Unrated severityNVD Advisory· Published Mar 17, 2026· Updated Mar 17, 2026

Ray Dashboard <= 2.8.0 Path Traversal Leading to Local File Disclosure

CVE-2026-32981

Description

A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences (e.g., ../) to access files outside the intended static directory, resulting in local file disclosure.

Affected products

Ray Project/Rayv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstorm.news/files/id/215801/mitreexploit
www.vulncheck.com/advisories/ray-dashboard-path-traversal-leading-to-local-file-disclosuremitrethird-party-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000