Security Advisory

CVE-2026-32981

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-17 19:33:50
Last updated 2026-06-30 12:07:39
Assigner VulnCheck
State PUBLISHED

Description

A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences (e.g., ../) to access files outside the intended static directory, resulting in local file disclosure.