CVE-2026-46413
MEDIUMDiscourse: Regular users can route multipart uploads into the admin backup store
Title source: cnaDescription
Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, regular users could route direct S3 multipart uploads through ExternalUploadManager into the admin backup store. This issue is fixed in versions 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5.
References (9)
Core 9
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/discourse/discourse/security/advisories/GHSA-3mvf-q9rg-w6m7
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/commit/1f1ded8dd361d81786bff17b35e1138d6ee299c0
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/commit/7ddde266617b452152c1bf5f903f6c07be38fc40
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/commit/a53df26dcf7e50ce2b20bfd5454a0c9d44b8fc7d
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/commit/abaa664c5df84026efb2ca264ba0f5586c3f2b01
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/releases/tag/v2026.1.5
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/releases/tag/v2026.4.2
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/releases/tag/v2026.5.1
X_Refsource_Misc x_refsource_misc
https://github.com/discourse/discourse/releases/tag/v2026.6.0
Scores
CVSS v3
6.5
EPSS
0.0037
EPSS Percentile
28.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-862
Status
published
Products (3)
discourse/discourse
>= 2026.1.0-latest, < 2026.1.5
discourse/discourse
>= 2026.4.0-latest, < 2026.4.2
discourse/discourse
>= 2026.5.0-latest, < 2026.5.1
Published
Jul 09, 2026
Tracked Since
Jul 10, 2026