CVE-2026-56138
MediumCVSS 5.3Summary
The AIL framework contains a path traversal vulnerability in the /objects/item/diff endpoint. This allows an authenticated AIL user to craft malicious item identifiers that may lead to unauthorized disclosure of local files.
Risk Assessment
The organization may be exposed to the disclosure of sensitive data from local files accessible to the AIL process, potentially leading to serious security breaches.
Recommendation
It is recommended to update the AIL framework to the latest version to benefit from the fixes implemented for validating item identifiers.
Original NVD description (English source)
AIL framework contains a path traversal vulnerability in the /objects/item/diff endpoint. The endpoint accepts item identifiers through the s1 and s2 query parameters and, prior to the fix, attempted to retrieve and compare item contents without first verifying that both referenced items existed as valid AIL objects. An authenticated AIL user could craft malicious item identifiers containing path traversal sequences to cause the application to read gzip-compressed files accessible to the AIL process. This could result in unauthorized disclosure of local file contents, limited to files readable by the application and compatible with the expected gzip-compressed item format. The issue was fixed by validating that both requested items exist before their contents are accessed.

