CVE-2026-6074

CRITICAL

Path traversal: '.../...//' in Intrado 911 Emergency Gateway (EGW)

Title source: cna

Description

A path traversal condition in Intrado 911 Emergency Gateway could allow an attacker with existing network access the ability to access the EGW management interface without authentication. Successful exploitation of this vulnerability could allow a user to read, modify, or delete files.

References (1)

[Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-06

Scores

CVSS v4 9.3

EPSS 0.0020

EPSS Percentile 41.9%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-35

Status published

Products (3)

Intrado/911 Emergency Gateway Versions 5.x

Intrado/911 Emergency Gateway Versions 6.x

Intrado/911 Emergency Gateway Versions 7.x

Published Apr 23, 2026

Tracked Since Apr 24, 2026