CVE Catalog

CVE-2026-40724

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Summary

CP Client Portal (Pro) versions up to 5.6.2 have a vulnerability that allows unauthorized users to download arbitrary files.

Risk Assessment

This vulnerability could lead to the leakage of sensitive data, posing a serious threat to the organization's security.

Recommendation

It is recommended to upgrade to the latest version of CP Client Portal to mitigate this vulnerability.

Original NVD description (English source)

CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS