Donate Telegram

CVE-2026-28373

NONE

Apr 03, 2026

Updated Apr 03, 2026

N/A

Parameter	Value
Affected Versions	before 1.10.2
Vendor	N/A
Public PoC	No

The Stackfield Desktop App before 1.10.2 for macOS and Windows contains a path traversal vulnerability in certain decryption functionality when processing the filePath property. A malicious export can write arbitrary content to any path on the victim's filesystem.

Vulnerable Products

n/a:n/a

References 3

https://www.stackfield.com/desktop-apps

https://www.rcesecurity.com/advisories/cve-2026-28373/

https://www.rcesecurity.com/2026/03/stackfield-desktop-app-rce-via-path-travers…

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-5455

N/A

CVE-2026-34874

N/A

CVE-2026-34871

N/A

CVE-2026-25835

Mbed

CVE-2026-25833

Mbed

CVE Details

CVE ID

CVE-2026-28373

Published Date

Apr 03, 2026

Vendor

N/A

Severity

NONE

Impact

Minimal impact

Source

Editor's Choice