CVE-2026-54832
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk15th percentile — higher than 15% of all known CVEs
Summary
The vulnerability in the Gutenverse Companion plugin version 2.5.0 and earlier allows unauthenticated attackers to bypass access controls. This flaw results from improper permission verification, enabling unauthorized operations without required authentication.
Risk Assessment
The risk involves potential unauthorized access to administrative functions or sensitive data, which could lead to privilege escalation, content modification, or information disclosure.
Recommendation
It is recommended to immediately update the Gutenverse Companion plugin to version 2.5.1 or later, which fixes this vulnerability. Also review access control configuration in other system components.
Original NVD description (English source)
Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions.

