CVE Catalog

CVE-2026-20685

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.19%

9th percentile - higher than 9% of all known CVEs

Summary

A vulnerability allows an attacker in a privileged network position to leak sensitive information. A path handling issue was addressed with improved validation.

Risk Assessment

The organization is at risk of confidential data leakage, potentially leading to information security breaches and financial losses.

Recommendation

Immediately update PCC to Release 5E290.3 or later, which contains the fix.

Original NVD description (English source)

An attacker in a privileged network position may be able to leak sensitive information. A path handling issue was addressed with improved validation. This issue is fixed in PCC Release 5E290.3.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS