VulnerabilityCVE-2026-28270CVSS 4.9

CVE-2026-28270: Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks configuration allows uploading of arbitrary files without proper validation. Malicious administrators co

NVD/CVE · [email protected]2/28/2026, 2:16:18 AM 49 points

Summary

Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks configuration allows uploading of arbitrary files without proper validation. Malicious administrators could exploit this to upload unauthorized file types to the system. Version 9.2.0 contains a patch for the issue.

Metadata

Article ID: #378
Source: NVD/CVE
Scraped At: 3/2/2026, 7:10:21 AM
URL Hash: ff7e4e98fffa99d2…

CVE-2026-28270: Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks configuration allows uploading of arbitrary files without proper validation. Malicious administrators co

Summary

Tags

Metadata