CVE-2026-5966HIGH 8.1EPSS p32.5%

CVE-2026-5966CVE-2026-5966

Description

ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authenticated remote attackers with web access can exploit Path Traversal to delete arbitrary files on the system.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
EPSS0.41% probability of exploitation · percentile 32.5% · 2026-06-19T12:03:05Z
Published2026-04-20
Last modified2026-05-12

Underlying weaknesses· 2

CWE-23CWE-22

References

  1. https://www.twcert.org.tw/en/cp-139-10832-05f3a-2.html
  2. https://www.twcert.org.tw/tw/cp-132-10831-a734d-1.html

2

TypeTargetConfidenceTier
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-220%live
WeaknessRelative Path Traversalcwe-230%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-5967
CVE
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability
CVE
CVE-2026-35076
CVE
CVE-2025-65792
CVE
CVE-2025-0105
CVE
CVE-2025-53082
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.