CVE-2026-11618NVD

Vulnerability Summary

A vulnerability was determined in DTStack Taier up to 1.4.0. The affected element is the function preHandle of the file taier-data-develop/src/main/java/com/dtstack/taier/develop/interceptor/LoginInterceptor.java of the component Source Connection Test Endpoint. Executing a manipulation can lead to improper authentication. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. This patch is called f95389e7f74acec42bcee079a616aaa06f9551d2. A patch should be applied to remediate this issue.

Severity Level

HIGH(7.3)

Published Date

Jun 9, 2026

Last Modified

Jun 9, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.07%Probability

Root Weakness (CWE)

N/A

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

ScopeUnchanged

ConfidentialityLow

IntegrityLow

AvailabilityLow

External References

https://vuldb.com/vuln/369299
https://vuldb.com/vuln/369299/cti
https://vuldb.com/cve/CVE-2026-11618
https://vuldb.com/submit/834008
https://github.com/DTStack/Taier/issues/1194
https://github.com/DTStack/Taier/commit/f95389e7f74acec42bcee079a616aaa06f9551d2
https://github.com/DTStack/Taier/

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-11618NVD

Vulnerability Summary

External References