CVE Catalog

CVE-2026-39584

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.33%

24th percentile — higher than 24% of all known CVEs

Summary

RepairBuddy versions up to 4.1132 have a broken access control issue that may allow subscribers unauthorized access to resources.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to privacy and security breaches.

Recommendation

It is recommended to update RepairBuddy to the latest version to mitigate the access control vulnerability.

Original NVD description (English source)

Subscriber Broken Access Control in RepairBuddy <= 4.1132 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS