CVE-2026-31215

CRITICAL

nexent v1.7.5.2 - Arbitrary File Deletion

Title source: llm

Description

The nexent v1.7.5.2 backend service contains an unauthorized arbitrary file deletion vulnerability in its ElasticSearch service interface. The DELETE /{index_name}/documents endpoint lacks proper authentication and authorization controls and does not validate the user-supplied path_or_url parameter. This allows unauthenticated remote attackers to send crafted requests that trigger the deletion of arbitrary documents from ElasticSearch indices and corresponding files from the MinIO storage system. Successful exploitation leads to data destruction and denial of service.

References (2)

Core 2

Core References

https://github.com/ModelEngine-Group/nexent

https://www.notion.so/CVE-2026-31215-35d1e139318881f5946ed206d96e34d8

Scores

CVSS v3 9.1

EPSS 0.0041

EPSS Percentile 32.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-552

Status published

Products (1)

nexent/nexent 1.7.5.2

Published May 12, 2026

Tracked Since May 12, 2026