Vendor

OpenZiti

1 brief RSS

zrok 'copy' Path Traversal Vulnerability (CVE-2026-45576)

A path traversal vulnerability exists in zrok copy (CVE-2026-45576) where an attacker-controlled WebDAV or zrok drive can write files outside the destination root by manipulating the DAV `href` response.

zrok/v2 +1 path-traversal webdav zrok

2r 1d ago