CVE-2026-9774 - Vulnerability Details

Description

ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability.

The specific flaw exists within the updateLicense method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to delete files or create a denial-of-service condition on the system. Was ZDI-CAN-28502.

Published: 2026-06-24

Score: 5.5 Medium

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

This vulnerability is a directory traversal flaw in ATEN Unizon's updateLicense method, permitting authenticated attackers to manipulate the filesystem prior to performing file operations. Without proper validation of the supplied path, a malicious user can delete arbitrary files or trigger a denial‑of‑service condition, potentially undermining system integrity and availability. The weakness is identified as CWE‑22, a common exploitation vector for directory traversal attacks.

Affected Systems

ATEN Unizon devices that implement the updateLicense functionality are affected. The vulnerability requires authentication to exploit, so all existing Unizon deployments remain vulnerable until patched. No specific minor version ranges are published, so the flaw applies generically to the current software releases.

Risk and Exploitability

The CVSS score of 5.5 indicates a moderate severity, with exploitation limited to authenticated accounts. The EPSS score is not available, and the vulnerability is not listed in the KEV catalog, suggesting limited current exploitation. An attacker gaining privileged access can submit a crafted path to updateLicense, causing deletion of critical files or a denial‑of‑service that impairs availability. The impact is bounded to the local account’s privileges but can still disrupt system operation.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

ATEN

Unizon

unknown

Version	Status	Constraints
`2.7.262.002`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the latest patch or firmware update released by ATEN that corrects the updateLicense path validation flaw.
Restrict access to the updateLicense function by limiting it to privileged administrators and enforcing strict input validation to prevent directory traversal.
Disable or remove the updateLicense endpoint on systems where it is unnecessary, and consider blocking the associated network port if possible.
Monitor for any new advisories or workarounds from ATEN, and apply them promptly once available.

Generated by OpenCVE AI on June 25, 2026 at 00:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact High

User Interaction None

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://www.aten.com/global/en/supportcenter/info/security-advisory/27/
https://www.zerodayinitiative.com/advisories/ZDI-26-378/

History

Wed, 24 Jun 2026 21:45:00 +0000

Type	Values Removed	Values Added
Description		ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the updateLicense method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to delete files or create a denial-of-service condition on the system. Was ZDI-CAN-28502.
Title		ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability
Weaknesses		CWE-22
References		https://www.aten.com/global/en/supportcenter/info/security-advisory/27/ https://www.zerodayinitiative.com/advisories/ZDI-26-378/
Metrics		cvssV3_0 `{'score': 5.5, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: zdi

Published: 2026-06-24T21:36:35.595Z

Updated: 2026-06-24T21:36:35.595Z

Reserved: 2026-05-27T22:18:47.840Z

Link: CVE-2026-9774

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-25T00:30:03Z

Weaknesses

CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object