CVE-2026-11431
Path Traversal in Altium Enterprise Server and Altium 365
Publication date: 2026-06-05
Last updated on: 2026-06-05
Assigner: Altium
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| altium | enterprise_server | 8.1.1 |
| altium | 365 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a path traversal issue in the Projects Service download endpoint used by Altium Enterprise Server and Altium 365. An authenticated user can provide a specially crafted path parameter that bypasses normal validation checks, allowing them to read arbitrary files or entire directories from the server's filesystem.
Because the files that can be read include service configuration and credential material, an attacker could gather sensitive information that might enable further compromise of the system.
Additionally, this vulnerability can be combined with another vulnerability (CVE-2026-11424) to reach cloud-side endpoints, and on multi-tenant Altium 365 deployments, it could expose credentials shared across services.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to unauthorized access to sensitive files on the server, including configuration files and credential material.
This can enable attackers to gather information that facilitates further compromise of the system, potentially leading to data breaches or unauthorized control over services.
In multi-tenant environments, exposed credentials could affect multiple services or tenants, increasing the scope and impact of the attack.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, you should upgrade to the fixed versions of the affected software.
- For Altium Enterprise Server, upgrade to version 8.1.1 or later.
- For Altium 365, ensure the service-level remediation has been applied.
Additionally, restrict authenticated user access to the Projects Service download endpoint until the update is applied to prevent exploitation.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability allows an authenticated user to read arbitrary files from the server filesystem, including service configuration and credential material. Such unauthorized access to sensitive information could lead to data breaches or unauthorized disclosure of personal or protected data.
Because the vulnerability can expose credentials and configuration data, it may impact compliance with standards and regulations like GDPR and HIPAA, which require protection of personal data and sensitive information against unauthorized access.
Exploitation of this vulnerability could therefore increase the risk of non-compliance with these regulations due to potential data exposure and insufficient protection of sensitive information.