CVE-2026-9102
CriticalSummary
A path traversal vulnerability exists in the Altium Enterprise Server ComparisonService due to missing filename sanitization in the Gerber file upload APIs. An authenticated workspace user can supply a crafted filename to write arbitrary files to any location on the server filesystem.
Risk Assessment
The risk to the organization includes the potential for remote code execution in the context of the service account, which could lead to service takeover or denial of service by overwriting application binaries or configuration files.
Recommendation
It is recommended to implement proper filename sanitization mechanisms and restrict user permissions for file uploads to minimize the risk associated with this vulnerability.
Original NVD description (English source)
A path traversal vulnerability exists in the Altium Enterprise Server ComparisonService due to missing filename sanitization in the Gerber file upload APIs. A regular authenticated workspace user can supply a crafted filename in the multipart Content-Disposition header to escape the intended temporary upload directory and write arbitrary files to any location on the server filesystem. Because content-controlled files can be written to web-accessible directories, this can be escalated to remote code execution in the context of the service account. It can also be used to overwrite application binaries or configuration files, leading to service takeover or denial of service.

