CVE-2026-42539EPSS p13.8%

CVE-2026-42539CVE-2026-42539

Description

IRIS is a web collaborative platform that helps incident responders share technical details during investigations. Versions prior to 2.4.28 return sensitive data to the user which are not required for the client’s operation. Version 2.4.28 contains a patch.

Scoring

CVSS 6.5 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS0.23% probability of exploitation · percentile 13.8% · 2026-06-18T12:00:27Z
Last modified2026-06-08

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-42543
CVE
CVE-2026-42538
CVE
CVE-2026-42329
CVE
CVE-2026-42540
CVE
CVE-2026-42547
CVE
CVE-2026-41522
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.