CVE-2026-8757

Published: Mag 17, 2026 Last Modified: Mag 19, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,5

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

HIGH 7,3

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: low

Integrity: low

Availability: low

HIGH 7,5

Source: [email protected]

Access Vector: network

Access Complexity: low

Authentication: none

Confidentiality: partial

Integrity: partial

Availability: partial

Description

AI Translation Available

A vulnerability was found in adenhq hive up to 0.11.0. This affects the function _read_events_tail of the file core/framework/server/routes_sessions.py of the component Delete Request Handler. Performing a manipulation results in path traversal. The attack may be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0007

Percentile

0,2th

Updated

EPSS Score Trend (Last 3 Days)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Stable

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Confidentiality Availability

Potential Impacts:

Execute Unauthorized Code Or Commands Modify Files Or Directories Read Files Or Directories Dos: Crash, Exit, Or Restart

Applicable Platforms

Technologies: AI/ML

Likelihood of Exploit: High

View CWE Details

Application

Hive by Adenhq

Product Information

Vendor Adenhq

Product Hive

Version Range Affected

To 0.11.0 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:adenhq:hive:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://gist.github.com/YLChen-007/ff3ff201b05d13d41f949f86…

https://gist.github.com/YLChen-007/ff3ff201b05d13d41f949f86e9187bd2

https://vuldb.com/submit/811276

https://vuldb.com/vuln/364384

https://vuldb.com/vuln/364384/cti

CVE-2026-8757

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 3 Days)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Common Consequences

Applicable Platforms

Hive by Adenhq

Product Information

Iscriviti alla newsletter