CVE 8.7 HIGH

OpenHarness Permission Bypass via grep and glob root argument_CVE-2026-40515

April 17, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not properly evaluated against configured path rules, allowing disclosure of sensitive local file content, key material, configuration files, or directory contents despite configured path restrictions.

AI Analysis

Permission bypass vulnerability allowing attackers to read sensitive files by exploiting incomplete path normalization in the permission checker.

Basic Information

ID CVE-2026-40515

Source VulnCheck

Published Apr 17, 2026 at 16:00

Affected Product

Vendor HKUDS

Product OpenHarness

Affected Versions HKUDS OpenHarness 0

CWE Classification

CWE-863

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor HKUDS

Product OpenHarness

References

{
    "lastseen": "",
    "description": "OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not properly evaluated against configured path rules, allowing disclosure of sensitive local file content, key material, configuration files, or directory contents despite configured path restrictions.",
    "published": "2026-04-17T16:00:07.116Z",
    "modified": "2026-04-17T16:00:07.116Z",
    "type": "cve",
    "title": "OpenHarness Permission Bypass via grep and glob root argument",
    "source": "VulnCheck",
    "references": "https://github.com/HKUDS/OpenHarness/pull/92\nhttps://github.com/HKUDS/OpenHarness/commit/bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae\nhttps://www.vulncheck.com/advisories/openharness-permission-bypass-via-grep-and-glob-root-argument",
    "id": "CVE-2026-40515",
    "bulletinFamily": "",
    "cwe": [
        "CWE-863"
    ],
    "cvelist": null,
    "sourceData": "HKUDS OpenHarness 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "OpenHarness",
    "version": "0",
    "vendor": "HKUDS",
    "ai_description": "Permission bypass vulnerability allowing attackers to read sensitive files by exploiting incomplete path normalization in the permission checker.",
    "ai_severity": "High",
    "ai_vendor": "HKUDS",
    "ai_product": "OpenHarness",
    "ai_version": "0",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply