CVE-2026-5966

HIGH

TeamT5｜ThreatSonar Anti-Ransomware - Arbitrary File Deletion

Title source: cna

Description

ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authenticated remote attackers with web access can exploit Path Traversal to delete arbitrary files on the system.

References (2)

[Third Party Advisory] https://www.twcert.org.tw/tw/cp-132-10831-a734d-1.html

[Third Party Advisory] https://www.twcert.org.tw/en/cp-139-10832-05f3a-2.html

Scores

CVSS v3 8.1

EPSS 0.0031

EPSS Percentile 53.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Details

CWE

CWE-23

Status published

Products (1)

TeamT5/ThreatSonar Anti-Ransomware < 4.0.0

Published Apr 20, 2026

Tracked Since Apr 20, 2026