EUVD-2026-33288

🗓️ 29 May 2026 12:32:43Reported by EUVDType

DreamMaker by Interinfo has unauthenticated file upload enabling remote code execution.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-10071	29 May 202612:32	–	attackerkb
Circl	CVE-2026-10071	29 May 202615:33	–	circl
CNNVD	Interinfo DreamMaker 代码问题漏洞	29 May 202600:00	–	cnnvd
CVE	CVE-2026-10071	29 May 202612:32	–	cve
Cvelist	CVE-2026-10071 Interinfo｜DreamMaker - Arbitrary File Upload	29 May 202612:32	–	cvelist
NVD	CVE-2026-10071	29 May 202613:16	–	nvd
Positive Technologies	PT-2026-44824	29 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-10071	5 Jun 202619:19	–	redhatcve
Vulnrichment	CVE-2026-10071 Interinfo｜DreamMaker - Arbitrary File Upload	29 May 202612:32	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "d8129b42-f574-3fcd-9da9-17469dd51278",
        "vendor": {
          "name": "Interinfo"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "307862d3-06d1-39ba-9fb6-3a7051587db0",
        "product": {
          "name": "DreamMaker",
          "vendor": {
            "name": "Internet Information Co., Ltd"
          }
        },
        "product_version": "0 ≤Java Composer 2.2"
      }
    ]
  }
]

Source	Link
twcert	www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html
twcert	www.twcert.org.tw/en/cp-139-10946-1127f-2.html

29 May 2026 13:28Current

6.4Medium risk

Vulners AI Score6.4

CVSS 49.3

CVSS 3.19.8

EPSS0.00508

SSVC