CVE-2026-2713 IBM — Exploit & Vulnerability Details HIGH

CVE-2026-2713

HIGH CVSS 3.1: 7.4 EPSS 0.01%

Parameter	Value
CVSS	7.4 (HIGH)
Type	CWE-427 (Uncontrolled Search Path Element)
Vendor	IBM
Public PoC	No

IBM Trusteer Rapport installer 3.5.2309.290 IBM Trusteer Rapport could allow a local attacker to execute arbitrary code on the system, caused by DLL uncontrolled search path element vulnerability. By placing a specially crafted file in a compromised folder, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Attack Parameters

Attack Vector

Local

Requires local access

Attack Complexity

High

Difficult to exploit

Privileges Required

None

No privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-427 Uncontrolled Search Path Element

References 1

https://www.ibm.com/support/pages/node/7263031

psirt@us.ibm.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2025-13213

IBM

5.4

CVE-2025-36227

IBM

5.4

CVE-2025-36226

IBM

5.4

CVE-2025-13219

IBM

5.9

CVE-2025-36105

IBM

4.4

Menu

CVE-2026-2713

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2025-13213

CVE-2025-36227

CVE-2025-36226

CVE-2025-13219

CVE-2025-36105

CVE Details

Editor's Choice

Menu

CVE-2026-2713

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2025-13213

CVE-2025-36227

CVE-2025-36226

CVE-2025-13219

CVE-2025-36105

CVE Details

Editor's Choice

Stay informed on cybersecurity