THREATOPS
THREAT OPSThreat News › CVE-2026-49488: Apache OpenMeetings: Arbitrary File Read

CVE-2026-49488: Apache OpenMeetings: Arbitrary File Read

medoss_secPublished 2026-07-14

<p>Posted by Maxim Solodovnik on Jul 14</p>Severity: critical <br /> <br /> Affected versions:<br /> <br /> - Apache OpenMeetings 5.0.0 before 9.1.0<br /> <br /> Description:<br /> <br /> Improper Limitation of a Pathname to a Restricted Directory (&apos;Path Traversal&apos;) vulnerability in Apache OpenMeetings.<br /> <br /> This issue affects Apache OpenMeetings: from 5.0.0 before 9.1.0.<br /> A

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://seclists.org/oss-sec/2026/q3/140