CVE-2026-41085HIGH 8.8EPSS p17.1%

CVE-2026-41085CVE-2026-41085

Description

Thermo Fisher Scientific Torrent Suite Dx through 5.14.2 has a privilege escalation vulnerability that may allow an authenticated user with limited access privileges to gain unauthorized administrator-level privileges through exploitation of specific system interfaces.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.26% probability of exploitation · percentile 17.1% · 2026-06-18T12:00:27Z
Published2026-05-18
Last modified2026-05-18

Underlying weaknesses· 1

CWE-269

References

  1. https://documents.thermofisher.com/TFS-Assets/CORP/Product-Guides/TorrentSuiteDxSoftware_v5_14_2.pdf
  2. https://thermofisher.com

1

TypeTargetConfidenceTier
WeaknessImproper Privilege Managementcwe-2690%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-32992
CVE
CVE-2025-46066
CVE
CVE-2026-41086
CVE
CVE-2025-54303
CVE
CVE-2025-54307
CVE
CVE-2025-8660
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.