Critical severity9.8NVD Advisory· Published Apr 2, 2026· Updated Apr 21, 2026
CVE-2026-2699
CVE-2026-2699
Description
Customer Managed ShareFile Storage Zones Controller (SZC) allows an unauthenticated attacker to access restricted configuration pages. This leads to changing system configuration and potential remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:progress:sharefile_storage_zones_controller:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:progress:sharefile_storage_zones_controller:*:*:*:*:*:*:*:*range: >=5.0.0,<5.12.4
- (no CPE)
Patches
Vulnerability mechanics
References
1News mentions
2- 6th April – Threat Intelligence ReportCheck Point Research · Apr 6, 2026
- You’re Not Supposed To ShareFile With Everyone (Progress ShareFile Pre-Auth RCE Chain CVE-2026-2699 & CVE-2026-2701)watchTowr Labs · Apr 2, 2026