Question 1

What is CVE-2026-52780 — CVE-2026-52780?

Accepted Answer

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, cache store poisoning leads to Remote Code Execution (RCE). This vulnerability is fixed in 17.3.3 and 17.4.1.

Question 2

What is the authoritative source for CVE-2026-52780?

Accepted Answer

CVE-2026-52780 (CVE-2026-52780) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	9.6 ()
Vector	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Last modified	2026-06-27

CVE-2026-52780CVE-2026-52780

Description

Scoring