CVE-2026-27018 in gotenberg
요약 (영어)
Gotenberg is an API for converting document formats. Prior to version 8.29.0, the fix introduced for CVE-2024-21527 can be bypassed using mixed-case or uppercase URL schemes. This issue has been patched in version 8.29.0.
공개
2026. 03. 30.
엔트리
| 아이디 | 취약성 | CWE | 기본 | 임시 | 0day | 오늘 | 악용 | KEV | EPSS | CTI | 대책 | CVE |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 354232 | gotenberg Chromium Deny-List 디렉토리 순회 | 22 | 6.3 | 6.0 | $0-$5k | $0-$5k | 정의되지 않음 | 0.00000 | 2.87 | 공식 수정 | CVE-2026-27018 |