Description
OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Prior to version 1.6.3-alpha, multiple storage helpers used path construction patterns that did not uniformly enforce base-directory containment. This created path-injection risk in file read/write/delete flows if malicious path-like values were introduced. This issue has been patched in version 1.6.3-alpha.
Published: 2026-03-06
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized file access and deletion leading to data compromise
Action: Apply Patch
AI Analysis

Impact

OpenSift, an AI research tool, incorrectly constructed file paths in its storage helpers before version 1.6.3-alpha, allowing an attacker to inject path-like values that bypassed base-directory containment checks. This flaw permits read, write, or delete operations on arbitrary files on the host filesystem. Successful exploitation would let an adversary disclose sensitive data, corrupt or erase files, and potentially gain privileges if the application process has elevated rights. The weakness is classified as CWE‑22, a path traversal vulnerability with high potential for information compromise.

Affected Systems

Vulnerable versions of OpenSift prior to 1.6.3-alpha are affected. The issue arises in the OpenSift application built with Python, which uses the open-source opensift package. No specific operating system or platform pieces are limited; the flaw exists wherever the vulnerable storage helpers are used in a deployment of the affected OpenSift release.

Risk and Exploitability

The CVSS score of 8.8 indicates a high severity level. EPSS is reported as less than 1 %, implying that while the likelihood of public exploitation is currently low, the vulnerability remains present and could be leveraged in targeted attacks. The vendor has patched the issue in release 1.6.3‑alpha, but the flaw is not listed in the CISA KEV catalog, which suggests no widely disclosed exploits at present. Likely attack vectors involve supplying crafted file path parameters via the application’s API or user interface, then triggering storage operations that treat those parameters unsafely.

Generated by OpenCVE AI on April 16, 2026 at 11:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenSift to version 1.6.3‑alpha or later, which includes corrected path containment logic.
  • Run the application under the least-privileged user account and configure file system permissions to restrict write/delete access outside the intended data directories.
  • Enable detailed application and system logging for file access operations, then monitor the logs for anomalous read, write, or delete actions that could indicate exploitation attempts.

Generated by OpenCVE AI on April 16, 2026 at 11:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 18 Mar 2026 13:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:opensift:opensift:*:*:*:*:*:python:*:*

Mon, 09 Mar 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 06 Mar 2026 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Opensift
Opensift opensift
Vendors & Products Opensift
Opensift opensift

Fri, 06 Mar 2026 04:45:00 +0000

Type Values Removed Values Added
Description OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Prior to version 1.6.3-alpha, multiple storage helpers used path construction patterns that did not uniformly enforce base-directory containment. This created path-injection risk in file read/write/delete flows if malicious path-like values were introduced. This issue has been patched in version 1.6.3-alpha.
Title OpenSift: Insufficient path containment checks in storage helpers could allow path traversal-style file operations
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Opensift Opensift
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-03-09T19:48:27.645Z

Reserved: 2026-03-02T21:43:19.926Z

Link: CVE-2026-28676

cve-icon Vulnrichment

Updated: 2026-03-09T19:48:16.112Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-06T05:16:36.270

Modified: 2026-03-18T13:02:04.840

Link: CVE-2026-28676

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T11:45:26Z

Weaknesses