CVE 8.7 HIGH

Interinfo｜DreamMaker – Arbitrary File Read_CVE-2026-10073

May 29, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files.

AI Analysis

Arbitrary File Read vulnerability allowing unauthenticated local attackers to download arbitrary system files via Relative Path Traversal

Basic Information

ID CVE-2026-10073

Source twcert

Published May 29, 2026 at 12:39

Affected Product

Vendor Interinfo

Product DreamMaker

Affected Versions Interinfo DreamMaker 0

CWE Classification

CWE-23

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Interinfo

Product DreamMaker

References

{
    "lastseen": "",
    "description": "DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files.",
    "published": "2026-05-29T12:39:31.934Z",
    "modified": "2026-05-29T12:39:31.934Z",
    "type": "cve",
    "title": "Interinfo\uff5cDreamMaker - Arbitrary File Read",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html\nhttps://www.twcert.org.tw/en/cp-139-10946-1127f-2.html",
    "id": "CVE-2026-10073",
    "bulletinFamily": "",
    "cwe": [
        "CWE-23"
    ],
    "cvelist": null,
    "sourceData": "Interinfo DreamMaker 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DreamMaker",
    "version": "0",
    "vendor": "Interinfo",
    "ai_description": "Arbitrary File Read vulnerability allowing unauthenticated local attackers to download arbitrary system files via Relative Path Traversal",
    "ai_severity": "High",
    "ai_vendor": "Interinfo",
    "ai_product": "DreamMaker",
    "ai_version": "0",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply