CVE-2026-40515

HIGH 7.5

OpenHarness Permission Bypass via grep and glob root argument

CVSS Score

7.5

EPSS Score

0.0%

EPSS Percentile

0th

OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not properly evaluated against configured path rules, allowing disclosure of sensitive local file content, key material, configuration files, or directory contents despite configured path restrictions.

CWE	CWE-863
Vendor	hkuds
Product	openharness
Published	Apr 17, 2026

Stay Ahead of the Next One

Get instant alerts for hkuds openharness

Be the first to know when new high vulnerabilities affecting hkuds openharness are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

HKUDS / OpenHarness

0 < bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/HKUDS/OpenHarness/pull/92 github.com: https://github.com/HKUDS/OpenHarness/commit/bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae vulncheck.com: https://www.vulncheck.com/advisories/openharness-permission-bypass-via-grep-and-glob-root-argument

Credits

Chia Min Jun Lennon