CVE-2026-44730
BaseFortify
Publication date: 2026-05-26
Last updated on: 2026-05-26
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| opencti | opencti | to 6.9.7 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
Exploiting this vulnerability can lead to full platform access for the attacker, which means they can access sensitive or proprietary information. The impact affects confidentiality, integrity, and availability of the platform, potentially allowing unauthorized data exposure and manipulation.
Can you explain this vulnerability to me?
This vulnerability exists in the OpenCTI platform prior to version 6.9.7. It allows an organization admin to escalate their privileges by adding a user from a different organization who has higher privileges into their own organization. This happens because of incorrect Access Control List (ACL) settings on the userEdit relationAdd functionality via the GraphQL API.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, you should upgrade the OpenCTI platform to version 6.9.7 or later, where the issue has been fixed.
This update corrects the Access Control List (ACL) settings on the userEdit relationAdd functionality, preventing organization admins from escalating privileges by adding users from different organizations with higher privileges.