CVE Catalog

CVE-2026-54832

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile — higher than 15% of all known CVEs

Summary

The vulnerability in the Gutenverse Companion plugin version 2.5.0 and earlier allows unauthenticated attackers to bypass access controls. This flaw results from improper permission verification, enabling unauthorized operations without required authentication.

Risk Assessment

The risk involves potential unauthorized access to administrative functions or sensitive data, which could lead to privilege escalation, content modification, or information disclosure.

Recommendation

It is recommended to immediately update the Gutenverse Companion plugin to version 2.5.1 or later, which fixes this vulnerability. Also review access control configuration in other system components.

Original NVD description (English source)

Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS