CVE-2026-40893
8.2 HIGHGotenberg is a Docker-powered stateless API for PDF files
Published: 2026-05-14 · Last updated: 2026-05-18
Severity and scoring
- CVSS
- 8.2 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L
- CWE
- CWE-184, CWE-73
Affected products
| Vendor | Product |
|---|---|
| thecodingmachine | gotenberg |
Description
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.31.0, Gotenberg only checks if the tag is exactly FileName, so System:FileName slips right through and ExifTool happily renames the file. This allows remote attackers to move, rename, and change permissions for arbitrary files. This vulnerability is fixed in 8.31.0.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-42597 — Gotenberg is a Docker-powered stateless API for PDF files (5.9 MEDIUM)
- CVE-2026-42596 — Gotenberg is a Docker-powered stateless API for PDF files (9.4 CRITICAL)
- CVE-2026-42595 — Gotenberg is a Docker-powered stateless API for PDF files (8.6 HIGH)
- CVE-2026-42594 — Gotenberg is a Docker-powered stateless API for PDF files (7.5 HIGH)
- CVE-2026-42593 — Gotenberg is a Docker-powered stateless API for PDF files (5.3 MEDIUM)
Same CWE
- CVE-2026-10303 — In ServerCo getssl version 2.49 and prior, the ACME challenge token returned to the client was not strictly validated against RFC 8555 be... (7.4 HIGH)
- CVE-2026-53864 — OpenClaw before 2026.5.26 contains an insufficient sanitization vulnerability in the host environment sanitizer that allows Node.js contr... (8.1 HIGH)
- CVE-2026-53861 — OpenClaw before 2026.5.6 contains an allowlist bypass vulnerability in the macOS Swift exec feature that misses combined POSIX inline-com... (6.6 MEDIUM)
- CVE-2026-53855 — OpenClaw before 2026.4.2 contains an inline-eval bypass vulnerability allowing authenticated operators to weaken strict allowlist checks ... (8.1 HIGH)
- CVE-2026-53848 — OpenClaw before 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper-level side ... (4.3 MEDIUM)