CVE-2026-4220 in Integrated Management Platforminfo

Summary

by MITRE • 03/16/2026

A vulnerability has been found in Technologies Integrated Management Platform 7.17.0. Affected by this issue is some unknown functionality of the file /SetWebpagePic.jsp. The manipulation of the argument targetPath/Suffix leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

03/16/2026

Moderation

accepted

Entry

VDB-351144

CPE

ready

CWE

CWE-434 (confirmed)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00057

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4220
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4220
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4220/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!