CVE Catalog

CVE-2026-40788

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.31%

22th percentile - higher than 22% of all known CVEs

Summary

ChatBot versions up to 7.9.7 have a vulnerability in access control that may allow unauthorized subscribers to access resources.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to loss of confidentiality and integrity of information.

Recommendation

It is recommended to update ChatBot to the latest version to mitigate this access control vulnerability.

Original NVD description (English source)

Subscriber Broken Access Control in ChatBot <= 7.9.7 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS