CRITICAL SeverityCVSS 3.19.1CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CVE-2026-2701
Last updated Apr 02, 2026 · Published Apr 02, 2026
Description
Authenticated user can upload a malicious file to the server and execute it, which leads to remote code execution.
Affected products
1 listed- Progress:ShareFile Storage Zones Controller
Mappings
CWE
CWE-434; CWE-78; CWE-94
CAPEC
None listed.
CVE® content © MITRE Corporation. Licensed under the CVE Terms of Use. Terms