CVE Catalog

CVE-2026-54844

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile — higher than 15% of all known CVEs

Summary

The CheckView Automated Testing plugin version 2.1.0 and earlier contains a vulnerability allowing unauthenticated attackers to bypass access controls. This flaw enables unauthorized access to testing features without authentication.

Risk Assessment

The organization is at risk of unauthorized access to sensitive testing functions, potentially leading to data leakage or test manipulation without administrator knowledge.

Recommendation

Immediately update the CheckView Automated Testing plugin to a version newer than 2.1.0. If no update is available, temporarily disable the plugin until a patch is released.

Original NVD description (English source)

Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS