CVE Catalog

CVE-2026-53698

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.04%

13th percentile — higher than 13% of all known CVEs

Summary

Silverpeas through 6.4.6 mishandles the 'Personal space' feature when no componentId is set.

Risk Assessment

Improper handling of this feature may lead to unauthorized access to user data, posing a significant security risk to the organization.

Recommendation

It is recommended to update Silverpeas to the latest version to fix this vulnerability and ensure proper handling of the 'Personal space' feature.

Original NVD description (English source)

Silverpeas through 6.4.6 mishandles the "Personal space" feature that is selected when no componentId is set.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS