CVE-2026-8326

UNKNOWN 0.0

Remote Spark SparkView Path Traversal in RDP Drive Redirection leading to RCE

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Path traversal vulnerability in Remote Spark (https://www.Remotespark.Com/) SparkView allows reading and writing arbitrary files in all directories as root. This leads to RCE. The affected component is the RDP drive redirection. Depending on implementation, the vulnerability can be exploited by an unauthenticated attacker. This issue affects SparkView: before build 1127.

CWE	CWE-23
Vendor	remote spark (https://www.remotespark.com/)
Product	sparkview
Published	May 29, 2026
Last Updated	May 29, 2026

Stay Ahead of the Next One

Get instant alerts for remote spark (https://www.remotespark.com/) sparkview

Be the first to know when new unknown vulnerabilities affecting remote spark (https://www.remotespark.com/) sparkview are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Remote Spark (https://www.remotespark.com/) / SparkView

0 < build 1127

References

NVD ↗ CVE.org ↗ EPSS Data ↗

remotespark.com: https://www.remotespark.com/view/new.html

Credits

Manuel Feifel of InfoGuard Labs