Path traversal: ‘…/…//’ in Intrado 911 Emergency Gateway (EGW)

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A path traversal condition in Intrado 911 Emergency Gateway could allow an attacker with existing network access the ability to access the EGW management interface without authentication. Successful exploitation of this vulnerability could allow a user to read, modify, or delete files.

AI Analysis

Path traversal vulnerability in Intrado 911 Emergency Gateway allowing unauthorized access to the management interface

Basic Information

ID CVE-2026-6074

Source icscert

Published Apr 23, 2026 at 18:14

Modified Apr 23, 2026 at 18:50

Affected Product

Vendor Intrado

Product 911 Emergency Gateway

Version Versions 7.x

Affected Versions Intrado 911 Emergency Gateway Versions 7.x
Intrado 911 Emergency Gateway Versions 6.x
Intrado 911 Emergency Gateway Versions 5.x

CWE Classification

CWE-35

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor Intrado

Product 911 Emergency Gateway

Version Versions 5.x, 6.x, 7.x

References

www.cisa.gov /news-events/ics-advisories/icsa-26-113-06

{
    "lastseen": "",
    "description": "A path traversal condition in Intrado 911 Emergency Gateway could allow an attacker with existing network access the ability to access the EGW management interface without authentication. Successful exploitation of this vulnerability could allow a user to read, modify, or delete files.",
    "published": "2026-04-23T18:14:09.028Z",
    "modified": "2026-04-23T18:50:20.955Z",
    "type": "cve",
    "title": "Path traversal: '.../...//' in Intrado 911 Emergency Gateway (EGW)",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-06",
    "id": "CVE-2026-6074",
    "bulletinFamily": "",
    "cwe": [
        "CWE-35"
    ],
    "cvelist": null,
    "sourceData": "Intrado 911 Emergency Gateway Versions 7.x\nIntrado 911 Emergency Gateway Versions 6.x\nIntrado 911 Emergency Gateway Versions 5.x",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "911 Emergency Gateway",
    "version": "Versions 7.x",
    "vendor": "Intrado",
    "ai_description": "Path traversal vulnerability in Intrado 911 Emergency Gateway allowing unauthorized access to the management interface",
    "ai_severity": "Critical",
    "ai_vendor": "Intrado",
    "ai_product": "911 Emergency Gateway",
    "ai_version": "Versions 5.x, 6.x, 7.x",
    "ai_score": 9.3
}

Path traversal: ‘…/…//’ in Intrado 911 Emergency Gateway (EGW)_CVE-2026-6074