CVE Catalog

CVE-2026-41566

CriticalCVSS 9.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.27%

19th percentile — higher than 19% of all known CVEs

Summary

CVE-2026-41566 involves improper handling of insufficient permissions in Apache Kvrocks version 2.8.0. This issue has been fixed in version 2.16.0.

Risk Assessment

Improper permission handling may lead to unauthorized access to system resources, posing a risk to the organization's data security.

Recommendation

It is recommended to upgrade to version 2.16.0 to mitigate this vulnerability.

Original NVD description (English source)

Improper Handling of Insufficient Permissions or Privileges vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: 2.8.0. Users are recommended to upgrade to version 2.16.0, which fixes the issue.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS