CVE-2026-24732 - Improper permission checks in Extension:NSFileRepo

CVE ID : CVE-2026-24732 Published : March 4, 2026, 12:13 p.m. | 19 minutes ago Description : Files or Directories Accessible to External Parties, Incorrect Permission Assignment for Critical Resource vulnerability in Hallo Welt! GmbH BlueSpice (Extension:NSFileRepo modules) allows Accessing Functionality Not Properly Constrained by ACLs, Bypassing Electronic Locks and Access Controls.This issue affects BlueSpice: from 5.1 through 5.1.5, from 5.2 through 5.2.0. Severity: 6.6 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...