CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Accellion: >> Kiteworks >> 9.1.0 Security Vulnerabilities

CVE-2026-28269

Kiteworks is a private data network (PDN). Prior to version 9.2.0, avulnerability in Kiteworks command execution functionality allows authenticated users to redirect command output to arbitrary file locations. This could be exploited to overwrite critical system files and gain elevated access. Version 9.2.0 contains a patch.

CVSS Score

5.9

EPSS Score

0.0

Published

2026-02-26

CVE-2017-9421

Authentication Bypass vulnerability in Accellion kiteworks before 2017.01.00 allows remote attackers to execute certain API calls on behalf of a web user using a gathered token via a POST request to /oauth/token.

CVSS Score

6.5

EPSS Score

0.003

Published

2018-05-24

Page 1

Vulnerabilities

Vulnerable Software

Accellion: >> Kiteworks >> 9.1.0 Security Vulnerabilities

Products

Pricing

Contact Us