CVE-2026-6074 | THREATINT

Description

A path traversal condition in Intrado 911 Emergency Gateway could allow an attacker with existing network access the ability to access the EGW management interface without authentication. Successful exploitation of this vulnerability could allow a user to read, modify, or delete files.

PUBLISHED Reserved 2026-04-10 | Published 2026-04-23 | Updated 2026-04-23 | Assigner icscert

CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-35 Path traversal: '.../...//'

Product status

Default status

unaffected

Versions 7.x

affected

Versions 6.x

affected

Versions 5.x

affected

References

www.cisa.gov/news-events/ics-advisories/icsa-26-113-06 government-resource

cve.org (CVE-2026-6074)

nvd.nist.gov (CVE-2026-6074)

Download JSON