CVE-2026-31817

HIGH EPSS 49.0%

Published Mar 10, 20263mo ago · Modified Mar 12, 20263mo ago

8.5 CVSS 3.1

High

Published Mar 10, 2026 3mo ago

Last Modified Mar 12, 2026 3mo ago

Description

OliveTin gives access to predefined shell commands from a web interface. Prior to 3000.11.2, when the saveLogs feature is enabled, OliveTin persists execution log entries to disk. The filename used for these log files is constructed in part from the user-supplied UniqueTrackingId field in the StartAction API request. This value is not validated or sanitized before being used in a file path, allowing an attacker to use directory traversal sequences (e.g., ../../../) to write files to arbitrary locations on the filesystem. This vulnerability is fixed in 3000.11.2.

CVSS Details

Base Score

8.5

Exploitability

3.1

Impact

4.7

Vector string

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L

Attack Vector Network

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Changed

Confidentiality None

Integrity High

Availability Low

Threat Intelligence

EPSS Exploit Probability

49.0% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 1

CWE-22 Path Traversal Resource Mgmt

Affected Products 1

Vendor	Product	Version	Range
olivetin	olivetin	*	<3000.11.2

References 1

github.com https://github.com/OliveTin/OliveTin/security/advisories/GHSA-364q-w7vh-vhpc

ExploitMitigationVendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.