CVE-2026-5966

HIGH

TeamT5|ThreatSonar Anti-Ransomware - Arbitrary File Deletion

Title source: cna
STIX 2.1

Description

ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authenticated remote attackers with web access can exploit Path Traversal to delete arbitrary files on the system.

References (2)

Core 2
Core References
Third Party Advisory third-party-advisory
https://www.twcert.org.tw/tw/cp-132-10831-a734d-1.html
Third Party Advisory third-party-advisory
https://www.twcert.org.tw/en/cp-139-10832-05f3a-2.html

Scores

CVSS v3 8.1
EPSS 0.0041
EPSS Percentile 32.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-22 CWE-23
Status published
Products (2)
TeamT5/ThreatSonar Anti-Ransomware < 4.0.0
teamt5/threatsonar_anti-ransomware < 4.0.0
Published Apr 20, 2026
Tracked Since Apr 20, 2026