4 matches found
EUVD-2026-25215
The LabOne Web Server, backing the LabOne User Interface, contains insufficient input validation in its file access functionality. An unauthenticated attacker could exploit this vulnerability to read arbitrary files on the host system that are accessible to the operating system user running the...
CVE-2026-6903
The LabOne Web Server, backing the LabOne User Interface, contains insufficient input validation in its file access functionality. An unauthenticated attacker could exploit this vulnerability to read arbitrary files on the host system that are accessible to the operating system user running the...
CVE-2026-6903
The CVE-2026-6903 involves the LabOne Web Server (frontend for the LabOne UI). The issue stems from insufficient input validation in the file access functionality, enabling an unauthenticated attacker to read arbitrary host files accessible to the LabOne software user. Additionally, weak cross-or...
CVE-2026-6903 Path Traversal Vulnerability in LabOne User Interface
The LabOne Web Server, backing the LabOne User Interface, contains insufficient input validation in its file access functionality. An unauthenticated attacker could exploit this vulnerability to read arbitrary files on the host system that are accessible to the operating system user running the...