CVE-2026-10074

MEDIUM NVD

CVSS Score 4.9

Severity MEDIUM

Published May 29, 2026

Vendor unknown

Description

DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files.

References

https://www.twcert.org.tw/en/cp-139-10946-1127f-2.html
https://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html