Description
Allegra exportReport Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is required to exploit this vulnerability.

The specific flaw exists within the exportReport method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to disclose information in the context of the service account. Was ZDI-CAN-28208.
Published: 2026-06-12
Score: 6.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw resides in the exportReport method of Allegra, where a supplied file path is used without proper validation, enabling a directory traversal attack. An authenticated attacker can trigger the service to read arbitrary files, exposing sensitive data in the context of the service account. The weakness is classified as CWE‑22, a classic path traversal vulnerability resulting in unauthorized access to confidential information.

Affected Systems

The vulnerability affects the Allegra system. No specific version ranges are provided, so all installations of Allegra are potentially impacted until the fix is applied.

Risk and Exploitability

The CVSS score of 6.5 indicates a moderate severity. The EPSS score is not available, and the issue is not listed in CISA’s KEV catalog, which suggests it is not currently being widely exploited. The attack requires valid authentication; therefore, the exposed data can only be read by users or processes with authorized access. The vulnerability permits remote exploitation, as the exportReport functionality can be invoked over the network.

Generated by OpenCVE AI on June 13, 2026 at 00:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Allegra to the latest release where the exportReport path validation is fixed, as noted in the Allegra 9.0.0 release notes.
  • If an upgrade cannot be performed immediately, restrict the exportReport endpoint to a minimal set of trusted users and drop any public or unauthenticated access.
  • Configure file system permissions on the Allegra service account so that only the required directories are readable, limiting the potential information disclosed through traversal attempts.

Generated by OpenCVE AI on June 13, 2026 at 00:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 12 Jun 2026 23:30:00 +0000

Type Values Removed Values Added
Description Allegra exportReport Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the exportReport method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to disclose information in the context of the service account. Was ZDI-CAN-28208.
Title Allegra exportReport Directory Traversal Information Disclosure Vulnerability
Weaknesses CWE-22
References
Metrics cvssV3_0

{'score': 6.5, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: zdi

Published:

Updated: 2026-06-12T23:04:07.075Z

Reserved: 2026-06-05T22:38:02.935Z

Link: CVE-2026-11442

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-13T00:16:23.683

Modified: 2026-06-13T00:16:23.683

Link: CVE-2026-11442

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-13T00:30:10Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')