CVE-2026-45188

low Apache
CVSS v3 Base Score
2.4
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:L/SC:H/SI:H/SA:H/S:N/AU:N/R:U/RE:L/U:Clear
Attack Characteristics
Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
P
Published: June 25, 2026 (14 days ago)
Last Modified: June 25, 2026
Vendor: Apache
Source: MITRE

Description

Relative Path Traversal vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which fixes the issue.

CWE

CWE-23

Affected Products

Apache Software Foundation Apache Kvrocks

References