CVE Catalog

CVE-2026-54533

MediumCVSS 6.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.29%

20th percentile — higher than 20% of all known CVEs

Summary

In versions prior to 5.0.0 of vantage6, malicious algorithms can potentially access other algorithms' input and output files. The issue is fixed in version 5.0.0.

Risk Assessment

The organization may be exposed to unauthorized access to data processed by algorithms, potentially leading to privacy and data security breaches.

Recommendation

It is recommended to upgrade to version 5.0.0 and to verify and restrict the algorithm containers that are allowed to run on the node.

Original NVD description (English source)

vantage6 is an open-source infrastructure for privacy preserving analysis. Prior to version 5.0.0, malicious algorithms can potentially access other algorithms input and output files. Version 5.0.0 fixes the issue. As a workaround, verify and restrict the algorithm containers that are allowed to run on the node.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS