CVE-2026-14439: A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation
A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area.
This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1. The issue has been remediated across Altium 365 shared multi-tenant deployments at the service level; remediation is in progress on remaining Altium 365 deployments.
Details
Original advisory: https://nvd.nist.gov/vuln/detail/CVE-2026-14439
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-144390.60% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 45% of all scored CVEs.
Referenced CVEs
| CVE | CSIRTS overview | External |
|---|---|---|
| CVE-2026-14439 | coverage & exploitation status | NVD · CVE.org |
Recent advisories for A path traversal
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
- unknownCVE-2026-42219: Frappe is a full-stack web application framework. Prior to 16.19.0 and 15.109.0, path traversa…nvd · 2026-07-10
- unknownCVE-2026-41482: Frappe is a full-stack web application framework. Prior to 16.18.3, possible path traversal an…nvd · 2026-07-10
- highCVE-2026-58499: EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal …nvd · 2026-07-10
- mediumCVE-2026-55469: Snipe-IT is an IT asset/license management system. Prior to 8.6.2, an authenticated user with …nvd · 2026-07-10
- highGHSA-p4m3-mgmm-c664: SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary f…ghsa · 2026-07-10
- highCVE-2025-70796: An unauthenticated path traversal vulnerability exists in the web management interface of WTI …nvd · 2026-07-10
More from NVD Recent CVEs
- mediumCVE-2026-15475: A weakness has been identified in MiniTool Partition Wizard up to 13.6. The affected element i…2026-07-12
- mediumCVE-2026-15474: A security flaw has been discovered in Eleveo Call Recording Software 9.7.0. Impacted is an un…2026-07-12
- mediumCVE-2026-15473: A vulnerability was identified in Eleveo Call Recording Software 9.7.0. This issue affects som…2026-07-12
- mediumCVE-2026-15472: A vulnerability was determined in Eleveo Call Recording Software 9.7.0. This vulnerability aff…2026-07-12
- mediumCVE-2026-15471: A vulnerability was found in Eleveo Call Recording Software 9.7.0. This affects an unknown par…2026-07-12