CVE-2026-35077

Arbitrary file delete vulnerability in method ugw-delete-file

CVSS 7.2 HIGHEPSS 0.4%CWE-73

In short

A feature that deletes files doesn't properly check what files users are allowed to delete, letting attackers with regular user access remove important system files they shouldn't touch.

Technical detail

The ugw-delete-file method fails to validate or restrict file paths provided by authenticated users, allowing path traversal attacks to delete arbitrary files on the system. An attacker with valid user credentials can exploit insufficient input validation to access and remove files outside intended directories.

Summary generated and translated by AI from the official description.

The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

MBS · Double-A Profibus MBS · Double-A x-link MBS · Double-X CAN MBS · Double-X DALI MBS · Double-X KNX MBS · Double-X LON MBS · Double-X M-Bus MBS · Double-X PROFINET MBS · Double-X x-link MBS · Single-A MBS · Single-X MBS · Triple-X KNX+DALI MBS · Triple-X KNX+LON MBS · Triple-X KNX+M-Bus MBS · Triple-X PROFINET+DALI MBS · Triple-X PROFINET+KNX MBS · Triple-X PROFINET+LON MBS · Triple-X PROFINET+M-Bus

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.certvde.com/en/advisories/VDE-2026-039/