CVE-2026-50881 | THREATINT

Description

Incorrect access control in the impworks Bonsai v6.0 allows authenticated attackers with Editor privileges to escalate privileges to Administrator and execute unauthorized account, password, and configuration changes.

PUBLISHED Reserved 2026-06-07 | Published 2026-06-15 | Updated 2026-06-16 | Assigner mitre

References

gist.github.com/pyuysig/68754e4c40161ea27fcf80be46c59e7c exploit

gist.github.com/pyuysig/68754e4c40161ea27fcf80be46c59e7c

cve.org (CVE-2026-50881)

nvd.nist.gov (CVE-2026-50881)

Download JSON