CVE Catalog

CVE-2026-48881

CriticalCVSS 9.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

19th percentile — higher than 19% of all known CVEs

Summary

Versions of TrueBooker <= 1.1.9 have an unauthenticated broken access control vulnerability that may allow attackers to access resources they should not have access to.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to data leaks or other serious security incidents.

Recommendation

It is recommended to upgrade to the latest version of TrueBooker to mitigate this vulnerability and conduct an access audit.

Original NVD description (English source)

Unauthenticated Broken Access Control in TrueBooker <= 1.1.9 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS