CVE-2026-10621

HIGH SEVERITY

CVSS Score & Metrics

Base Score

7.5 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N                                    

Vulnerability Description

Path traversal in restore handler in Collibra Agent, allows an attacker to write arbitrary files via a crafted ZIP archive. Collibra Agent fails to properly validate and canonicalize file path during ZIP extraction, this can allow an attacker to write files outside the intended extraction directory.

Vulnerability Details

Published Date

June 02, 2026

Last Modified

June 02, 2026

Source

NVD

Vendor

Collibra

Product

Collibra Platform (SaaS), Collibra Platform (on-prem)

External References

https://kb.cert.org/vuls/id/873170
https://www.collibra.com/

CVE-2026-10621

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment