High severityNVD Advisory· Published May 12, 2026· Updated May 12, 2026
CVE-2026-6865
CVE-2026-6865
Description
CWE-22: Improper Limitation of a Pathname to a Restricted Directory (“Path Traversal”) vulnerability that could cause unauthorized access to sensitive files when user-supplied input is improperly handled during server-side file path processing.
Patches
Vulnerability mechanics
References
1News mentions
1- Schneider Electric EasyLogic T150 and Saitel DPCISA ICS Advisories