CVE Catalog
CVE-2026-39584
MediumCVSS 6.5Exploitation Probability (EPSS)
Low risk0.33%
24th percentile — higher than 24% of all known CVEs
Summary
RepairBuddy versions up to 4.1132 have a broken access control issue that may allow subscribers unauthorized access to resources.
Risk Assessment
Organizations may be exposed to unauthorized access to sensitive data, potentially leading to privacy and security breaches.
Recommendation
It is recommended to update RepairBuddy to the latest version to mitigate the access control vulnerability.
Original NVD description (English source)
Subscriber Broken Access Control in RepairBuddy <= 4.1132 versions.

