CVE-2026-10621

Vulnerability

Collibra Agent contains a Zip Slip vulnerability in its restore handler, accessible via POST /rest/restore. This vulnerability allows for path traversal because file paths within a ZIP archive are not properly validated or canonicalized before extraction. This affects Collibra Platform (CP) and Collibra Platform Self-Hosted (CPSH) agents [2].

Exploitation

A remote, unauthenticated attacker can exploit this vulnerability by uploading a crafted ZIP archive. This archive must contain directory traversal sequences, such as ../, which, when extracted, will write files to arbitrary locations on the server outside of the intended extraction directory [2].

Impact

Successful exploitation allows an attacker to write arbitrary files to any location on the underlying host. In a chained attack, this arbitrary file write can be used to place a malicious JSP file, potentially leading to remote code execution with the privileges of the Collibra Agent process [2].

Mitigation

Collibra has not yet released a patch or specific mitigation details for this vulnerability. Further information may be available from CERT/CC [2]. Collibra's website provides general information about their platform [1].