CVE-2026-2604
Evolution-data-server: evolution data server: arbitrary file deletion via inconsistent uri handling
A flaw was found in evolution-data-server. Inconsistent comparison logic in the addressbook file backend allows a Flatpak application with D-Bus access to craft a malicious URI containing directory traversal sequences. This URI is stored without proper validation during contact creation or modification. Later, during contact deletion, the URI is processed with a less strict check, leading to the deletion of arbitrary files on the host filesystem. This could potentially include critical Flatpak override files.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L
Productos afectados
GNOME · Evolution Data ServerRed Hat · Red Hat Enterprise Linux 10Red Hat · Red Hat Enterprise Linux 6Red Hat · Red Hat Enterprise Linux 7Red Hat · Red Hat Enterprise Linux 8Red Hat · Red Hat Enterprise Linux 9PoCs públicas encontradas — 1
cve_referencegitlab.gnome.org/GNOME/evolution-data-server/-/work_items/627no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://access.redhat.com/security/cve/CVE-2026-2604https://bugzilla.redhat.com/show_bug.cgi?id=2440301https://gitlab.gnome.org/GNOME/evolution-data-server/-/issues/627https://gitlab.gnome.org/GNOME/evolution-data-server/-/work_items/627https://lists.debian.org/debian-lts-announce/2026/03/msg00007.html