CVE Catalog

CVE-2026-23537

CriticalCVSS 9.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.57%

43th percentile — higher than 43% of all known CVEs

Summary

A vulnerability in the Feast Feature Server's `/save-document` endpoint allows an unauthenticated remote attacker to write arbitrary JSON files to the server's filesystem. Although file location restrictions are attempted, they can be bypassed, enabling overwriting of critical application configurations or startup scripts.

Risk Assessment

An unauthenticated attacker can compromise the server by modifying configurations or startup scripts, leading to unauthorized system changes, disk exhaustion (DoS), or potential remote code execution.

Recommendation

Immediately update Feast Feature Server to a patched version and restrict access to the `/save-document` endpoint to trusted networks or users only.

Original NVD description (English source)

A vulnerability has been identified in the Feast Feature Server’s `/save-document` endpoint that allows an unauthenticated remote attacker to write arbitrary JSON files to the server's filesystem. Although the system attempts to restrict file locations, these protections can be bypassed, enabling an attacker to overwrite vital application configurations or startup scripts. Because this flaw requires no credentials or special privileges, any attacker with network access to the server can potentially compromise the integrity of the system. This could lead to unauthorized system modifications, denial of service through disk exhaustion, or potential remote code execution.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS