CVE-2026-29200 | THREATINT

Description

A critical IDOR vulnerability has been discovered in Comet Backup affecting all versions from 20.11.0 to 26.1.1 and 26.2.1. The vulnerability allows a tenant administrator to impersonate any end-user account of other tenants on the same server via a vulnerable API call.

PUBLISHED Reserved 2026-03-04 | Published 2026-05-04 | Updated 2026-05-04 | Assigner hackerone

CRITICAL: 9.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:H

Problem types

CWE-639 Insecure Direct Object Reference (IDOR)

Product status

Default status

unaffected

20.11.0 (semver) before 26.1.2

affected

26.2.0 (semver) before 26.2.2

affected

References

support.cometbackup.com/...DOR-vulnerability-in-Comet-Backup

cve.org (CVE-2026-29200)

nvd.nist.gov (CVE-2026-29200)

Download JSON