CVE-2026-6265 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	UNKNOWN				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Common Weakness Enumeration

CWE-278 - Insecure Preserved Inherited Permissions
A product inherits a set of insecure permissions for an object, e.g. when copying from an archive file, without user awareness or involvement.

References

https://labs.reversec.com/advisories/2026/04/cerberus-ftp-server-elevation-of-privileges

https://www.cerberusftp.com/releasenotes/

https://labs.reversec.com/advisories/2026/04/cerberus-ftp-server-elevation-of-privileges