CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-30286

An arbitrary file overwrite vulnerability in Funambol, Inc. Zefiro Cloud v32.0.2026011614 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.1%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/Secsys-FDU/AF_CVEs/issues/14
https://play.google.com/store/apps/details?id=com.funambol.zefiro
https://secsys.fudan.edu.cn/
https://zefiro.me/

Products affected by CVE-2026-30286

Funambol » Zefiro » Version: 32.0.2026011614

cpe:2.3:a:funambol:zefiro:32.0.2026011614

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-30286

Products

Pricing

Contact Us