CVE Catalog

CVE-2026-37470

HighCVSS 7.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.32%

24th percentile - higher than 24% of all known CVEs

Summary

A vulnerability in ClipBucket v5.5.2 allows an attacker to execute arbitrary code via the authentication interface, login page endpoint, and HTTP response security headers components.

Risk Assessment

An attacker can take over the server, steal data, or install malware, compromising the confidentiality, integrity, and availability of the system.

Recommendation

Immediately update ClipBucket to the latest version and apply security patches for the authentication interface and HTTP headers.

Original NVD description (English source)

An issue in ClipBucket v5 v.5.5.2 allows an attacker to execute arbitrary code via the Authentication interface, login page endpoint and HTTP response security headers components

Vulnerability data from NVD (NIST) · CISA KEV · EPSS