PatchSiren cyber security CVE debrief
CVE-2026-50877 Zhoros CVE debrief
CVE-2026-50877 is a directory traversal vulnerability in Zhoros SuperBin v1.0.0. An issue in the software allows attackers to execute a directory traversal via supplying files with names containing traversal characters. The CVE was published on 2026-06-15T20:16:30.617Z and has not been modified since then.
- Vendor
- Zhoros
- Product
- SuperBin
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Users of Zhoros SuperBin v1.0.0 should be aware of this vulnerability and take necessary precautions to prevent exploitation.
Technical summary
The vulnerability is a directory traversal issue in Zhoros SuperBin v1.0.0. Attackers can exploit this vulnerability by supplying files with names containing traversal characters.
Defensive priority
High
Recommended defensive actions
- Update to a patched version of Zhoros SuperBin if available.
- Restrict file uploads to only allow specific file types and names.
- Monitor for suspicious file upload activity.
Evidence notes
The CVE record was obtained from the official CVE database. The vulnerability details were provided by an unknown vendor.
Official resources
-
CVE-2026-50877 CVE record
CVE.org
-
CVE-2026-50877 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-50877 was published on 2026-06-15T20:16:30.617Z.