CVE-2026-38993

MEDIUM

Cockpit < 2.14.0 - Authenticated Path Traversal and Arbitrary File Write via Buckets Component

Title source: llm

Description

Cockpit 2.13.5 and earlier is vulnerable to directory traversal via the Buckets component. This vulnerability allows authenticated attackers to write files to arbitrary locations within the uploads directory or overwrite assets with malicious versions.

References (2)

Core 2

Core References

https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0

https://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/

Scores

CVSS v3 6.5

EPSS 0.0065

EPSS Percentile 46.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (1)

cockpit-hq/cockpit 0 - 2.14.0Packagist

Published Apr 29, 2026

Tracked Since Apr 29, 2026