Vulnerabilities

Report: Complete Guide to CVE-2026-5535 - FedML-AI FedML MQTT Message FileUtils.java path traversal

2026-04-05 0 views admin

CVE ID :CVE-2026-5535 Published : April 5, 2026, 3:16 a.m. | 1 hour, 16 minutes ago Description :A security flaw has been discovered in FedML-AI FedML up to 0.8.9. This impacts an unknown function of the file FileUtils.java of the component MQTT Message Handler. Performing a manipulation of the argument dataSet results in path traversal. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way. Severity: 5.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-5535

Severity

MEDIUM

Published

April 5, 2026

Affected Product: java

Impact: path traversal

🏷️ Tags

reportcompleteguidefedmlmessagefileutilstraversalpublishedcvecve-2026-5535

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Complete Guide to CVE-2026-5535 - FedML-AI FedML MQTT Message FileUtils.java path traversal

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Latest: CVE-2026-5568 - Akaunting Invoice/Billing cross site scripting

Report: CVE-2026-5567 - Tenda M3 Destination setAdvPolicyData buffer overflow

Report: CVE-2026-5570 - Technostrobe HI-LED-WR120-G2 LoginCB index_config improper authentication - Guide

Report: CVE-2026-5569 - Technostrobe HI-LED-WR120-G2 Endpoint access control - Complete Guide

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting