{"api_version":"1","generated_at":"2026-06-04T11:55:55+00:00","cve":"CVE-2026-7766","urls":{"html":"https://cve.report/CVE-2026-7766","api":"https://cve.report/api/cve/CVE-2026-7766.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-7766","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-7766"},"summary":{"title":"Path Traversal in Kenik cameras","description":"Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the server.\n\nThe issue was fixed in version 2026-04-23 of the KG-5260xxxx-IL-(G)2 cameras.\nRest of the products were fixed in version 2025-04-21.","state":"PUBLISHED","assigner":"CERT-PL","published_at":"2026-05-25 13:16:26","updated_at":"2026-05-26 19:59:22"},"problem_types":["CWE-22","CWE-22 CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"],"metrics":[{"version":"4.0","source":"cvd@cert.pl","type":"Secondary","score":"8.3","severity":"HIGH","vector":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","data":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}},{"version":"4.0","source":"CNA","type":"CVSS","score":"8.3","severity":"HIGH","vector":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N","data":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"ADJACENT","baseScore":8.3,"baseSeverity":"HIGH","privilegesRequired":"NONE","providerUrgency":"NOT_DEFINED","subAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnerabilityResponseEffort":"NOT_DEFINED"}}],"references":[{"url":"https://cert.pl/posts/2026/05/CVE-2026-7766","name":"https://cert.pl/posts/2026/05/CVE-2026-7766","refsource":"cvd@cert.pl","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-7766","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-7766","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Kenik","product":"KG-5230TAS-IL-3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5230TAS-IL-G3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5230DAS-IL-G3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5260TZAS-IL-3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5260DZAS-IL-3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5260TZAS-IL-G3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5260DZAS-IL-G3","version":"affected 2025-04-21 date","platforms":[]},{"source":"CNA","vendor":"Kenik","product":"KG-5260xxxx-IL-(G)2","version":"affected 2026-04-23 date","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[{"source":"CNA","value":"Łukasz Bawolski (Exea Data Center)","lang":"en"}],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"7766","cve":"CVE-2026-7766","epss":"0.000480000","percentile":"0.152730000","score_date":"2026-05-31","updated_at":"2026-06-01 00:08:20"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-7766","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","timestamp":"2026-05-26T15:58:49.646754Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-05-26T15:58:54.905Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","product":"KG-5230TAS-IL-3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5230TAS-IL-G3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5230DAS-IL-G3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5260TZAS-IL-3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5260DZAS-IL-3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5260TZAS-IL-G3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5260DZAS-IL-G3","vendor":"Kenik","versions":[{"lessThan":"2025-04-21","status":"affected","version":"0","versionType":"date"}]},{"defaultStatus":"unaffected","product":"KG-5260xxxx-IL-(G)2","vendor":"Kenik","versions":[{"lessThan":"2026-04-23","status":"affected","version":"0","versionType":"date"}]}],"credits":[{"lang":"en","type":"finder","value":"Łukasz Bawolski (Exea Data Center)"}],"datePublic":"2026-05-25T07:40:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the server.<br><br>The issue was fixed in version 2026-04-23 of the&nbsp;KG-5260xxxx-IL-(G)2 cameras.<br>Rest of the products were fixed in version&nbsp;2025-04-21."}],"value":"Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the server.\n\nThe issue was fixed in version 2026-04-23 of the KG-5260xxxx-IL-(G)2 cameras.\nRest of the products were fixed in version 2025-04-21."}],"impacts":[{"capecId":"CAPEC-126","descriptions":[{"lang":"en","value":"CAPEC-126 Path Traversal"}]}],"metrics":[{"cvssV4_0":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"ADJACENT","baseScore":8.3,"baseSeverity":"HIGH","privilegesRequired":"NONE","providerUrgency":"NOT_DEFINED","subAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnerabilityResponseEffort":"NOT_DEFINED"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-22","description":"CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-05-25T11:16:22.837Z","orgId":"4bb8329e-dd38-46c1-aafb-9bf32bcb93c6","shortName":"CERT-PL"},"references":[{"tags":["third-party-advisory"],"url":"https://cert.pl/posts/2026/05/CVE-2026-7766"}],"source":{"discovery":"EXTERNAL"},"title":"Path Traversal in Kenik cameras","x_generator":{"engine":"Vulnogram 0.2.0"}}},"cveMetadata":{"assignerOrgId":"4bb8329e-dd38-46c1-aafb-9bf32bcb93c6","assignerShortName":"CERT-PL","cveId":"CVE-2026-7766","datePublished":"2026-05-25T11:16:22.837Z","dateReserved":"2026-05-04T10:01:33.811Z","dateUpdated":"2026-05-26T15:58:54.905Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-05-25 13:16:26","lastModifiedDate":"2026-05-26 19:59:22","problem_types":["CWE-22","CWE-22 CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"],"metrics":{"cvssMetricV40":[{"source":"cvd@cert.pl","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"7766","Ordinal":"1","Title":"Path Traversal in Kenik cameras","CVE":"CVE-2026-7766","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"7766","Ordinal":"1","NoteData":"Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the server.\n\nThe issue was fixed in version 2026-04-23 of the KG-5260xxxx-IL-(G)2 cameras.\nRest of the products were fixed in version 2025-04-21.","Type":"Description","Title":"Path Traversal in Kenik cameras"}]}}}