High severity7.3NVD Advisory· Published May 5, 2026· Updated May 5, 2026

CVE-2026-7784

Description

A vulnerability has been found in RTGS2017 NagaAgent up to 5.1.0. This issue affects some unknown processing of the file apiserver/routes/extensions.py of the component Skills Endpoint. Such manipulation of the argument Name leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

RTGS2017/Nagaagentreferences

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/RTGS2017/NagaAgent/issues/311nvd
vuldb.com/submit/807744nvd
vuldb.com/vuln/360981nvd
vuldb.com/vuln/360981/ctinvd

News mentions

No linked articles in our index yet.

cvss	0.474
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000