Description
CTMS and CPAS developed by Sunnet has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
Published: 2026-05-02
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An arbitrary file upload vulnerability in Sunnet's CTMS and CPAS allows a privileged remote attacker to upload a malicious file and execute it as a web shell. This provides the attacker with arbitrary code execution on the server, enabling full compromise of the underlying operating system and all data stored therein.

Affected Systems

The vulnerability affects the Sunnet CPAS and Sunnet CTMS applications. No specific product versions are listed in the available information, so all currently deployed instances of these applications are considered at risk until a vendor fix is issued.

Risk and Exploitability

The CVSS score of 8.6 categorizes this flaw as high severity, and although the EPSS score is not available, the lack of a current KEV listing does not mitigate the risk. The likely attack vector is a remote privileged attacker who can access the file upload functionality; from there, the attacker can upload a web shell and then execute it to achieve full code execution on the server.

Generated by OpenCVE AI on May 2, 2026 at 11:27 UTC.

Remediation

Vendor Solution

The vendor should have issued a patch. If not yet received, please reach out to the vendor directly.

OpenCVE Recommended Actions

  • Apply the vendor patch as soon as it becomes available.
  • Contact Sunnet for updates if a patch is not yet released.
  • Restrict file uploads by enforcing strict file type and size checks, and remove the arbitrary upload functionality if possible.
  • Implement WAF rules to detect and block suspicious upload attempts.

Generated by OpenCVE AI on May 2, 2026 at 11:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 02 May 2026 09:30:00 +0000

Type Values Removed Values Added
Description CTMS and CPAS developed by Sunnet has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
Title Sunnet|CTMS and CPAS - Arbitrary File Upload
Weaknesses CWE-434
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: twcert

Published:

Updated: 2026-05-02T09:06:25.153Z

Reserved: 2026-04-30T09:01:05.760Z

Link: CVE-2026-7490

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-02T10:16:18.963

Modified: 2026-05-02T10:16:18.963

Link: CVE-2026-7490

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-02T11:30:41Z

Weaknesses