CVE Catalog

CVE-2026-44083

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.06%

20th percentile — higher than 20% of all known CVEs

Summary

A vulnerability in QuMagie has been reported that allows for authorization bypass through a user-controlled key. Remote attackers can exploit this vulnerability to gain unintended privileges.

Risk Assessment

The organization may be exposed to unauthorized access to resources, potentially leading to serious security breaches.

Recommendation

It is recommended to upgrade to QuMagie version 2.9.1 or later to mitigate this vulnerability.

Original NVD description (English source)

An authorization bypass through user-controlled key vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to gain unintended privileges. We have already fixed the vulnerability in the following version: QuMagie 2.9.1 and later

Vulnerability data from NVD (NIST) · CISA KEV · EPSS