Ghostwire

CVE-2026-26236: A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the...

HIGH CVSS 7.5

Published: June 9, 2026 | Last Modified: June 9, 2026

Description

A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to access unauthorized data or perform unauthorized actions. We have already fixed the vulnerability in the following version: QuMagie 2.9.0 and later

Ghostwire Analysis — What This Means Practically

High CVSS score indicates significant risk — exploitation could lead to substantial data exposure or system compromise.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (2 articles)

References

www.tenable.com/cve/CVE-2026-26236
www.cnnvd.org.cn/home/globalSearch?keyword=CVE-2026-26236
www.qnap.com/en/security-advisory/qsa-26-36