CVE Catalog
CVE-2026-48881
CriticalCVSS 9.1Exploitation Probability (EPSS)
Low risk0.28%
19th percentile — higher than 19% of all known CVEs
Summary
Versions of TrueBooker <= 1.1.9 have an unauthenticated broken access control vulnerability that may allow attackers to access resources they should not have access to.
Risk Assessment
Organizations may be exposed to unauthorized access to sensitive data, potentially leading to data leaks or other serious security incidents.
Recommendation
It is recommended to upgrade to the latest version of TrueBooker to mitigate this vulnerability and conduct an access audit.
Original NVD description (English source)
Unauthenticated Broken Access Control in TrueBooker <= 1.1.9 versions.

