Security Advisory

CVE-2026-2817

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-19 17:18:09

Last updated 2026-02-20 20:31:49

Assigner HeroDevs

State PUBLISHED

Description

Use of insecure directory in Spring Data Geode snapshot import extracts archives into predictable, permissive directories under the system temp location. On shared hosts, a local user with basic privileges can access another user’s extracted snapshot contents, leading to unintended exposure of cache data.

← Browse all CVEs View on cve.org ↗