CVE-2026-2701 - Vulnerability Details - OpenCVE

Authenticated user can upload a malicious file to the server and execute it, which leads to remote code execution.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Progress

ShareFile Storage Zones Controller

unaffected

Version	Status	Constraints
`0`	affected	≤ 5.12.3

No data.

No data.

No data.

Project Subscriptions

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

Reset the secret and password using custom tool provided by ShareFile

References

Link	Providers
https://docs.sharefile.com/en-us/storage-zones-controller/5-0/security-vulnerability-feb26

History

Thu, 02 Apr 2026 13:45:00 +0000

Type	Values Removed	Values Added
Description		Authenticated user can upload a malicious file to the server and execute it, which leads to remote code execution.
Title		RCE vulnerability in Progress ShareFile Storage Zones Controller (SZC)
Weaknesses		CWE-434 CWE-78 CWE-94
References		https://docs.sharefile.com/en-us/storage-zones-controller/5-0/security-vulnerability-feb26
Metrics		cvssV3_1 `{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: ProgressSoftware

Published: 2026-04-02T13:04:38.554Z

Updated: 2026-04-02T13:48:45.736Z

Reserved: 2026-02-18T17:20:44.202Z

Link: CVE-2026-2701

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-04-02T14:16:27.917

Modified: 2026-04-02T14:16:27.917

Link: CVE-2026-2701

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-2701", "assignerOrgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "state": "PUBLISHED", "assignerShortName": "ProgressSoftware", "dateReserved": "2026-02-18T17:20:44.202Z", "datePublished": "2026-04-02T13:04:38.554Z", "dateUpdated": "2026-04-02T13:48:45.736Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "shortName": "ProgressSoftware", "dateUpdated": "2026-04-02T13:04:38.554Z"}, "title": "RCE vulnerability in Progress ShareFile Storage Zones Controller (SZC)", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-434", "description": "CWE-434: Unrestricted Upload of File with Dangerous Type", "type": "CWE"}, {"lang": "en", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "type": "CWE"}, {"lang": "en", "cweId": "CWE-94", "description": "CWE-94: Improper Control of Generation of Code ('Code Injection')", "type": "CWE"}]}], "impacts": [{"descriptions": [{"lang": "en", "value": "This vulnerability allows an authenticated user to upload a malicious file to the server and execute it, potentially leading to remote code execution."}]}], "affected": [{"vendor": "Progress", "product": "ShareFile Storage Zones Controller", "versions": [{"status": "affected", "version": "0", "lessThanOrEqual": "5.12.3", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Authenticated user can upload a malicious file to the server and execute it, which leads to remote code execution.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Authenticated user can upload a malicious file to the server and execute it, which leads to remote code execution."}]}], "references": [{"url": "https://docs.sharefile.com/en-us/storage-zones-controller/5-0/security-vulnerability-feb26", "tags": ["vendor-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "CRITICAL", "baseScore": 9.1, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"}}], "workarounds": [{"lang": "en", "value": "Reset the secret and password using custom tool provided by ShareFile", "supportingMedia": [{"type": "text", "base64": false, "value": "Reset the secret and password using custom tool provided by ShareFile"}]}], "credits": [{"lang": "en", "value": "Piotr Bazydlo of watchTowr", "type": "finder"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-02T13:48:38.846207Z", "id": "CVE-2026-2701", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-02T13:48:45.736Z"}}]}}