CVE-2026-8464

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 11, 2026

Vendor unknown

Description

Golem OEE MES is vulnerable to an unauthenticated path traversal flaw. This vulnerability allows an attacker in the same local network to read arbitrary files from the server's operating system by manipulating HTTP request paths. This issue has been fixed in version 11.6.0

References

https://cert.pl/posts/2026/06/CVE-2026-8464
https://www.neuron.com.pl/mes-help/mes-download.html