HIGH 7.5

PYSEC-2026-114

Details

OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An unauthenticated attacker can read arbitrary files from the filesystem by sending crafted GET requests with path traversal sequences (e.g., '../') in the URL. For example, requesting /static/css//../../../../../../../../etc/passwd returns the contents of /etc/passwd. This vulnerability was discovered by Raif Berkay Dincel and confirmed on Linux Mint and Windows 10.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / pycti

Introduced in: 0

No fixed version published yet for pycti (pip). Pin to a known-safe version or switch to an alternative.

References

https://www.opencti.io/ [WEB]
https://www.vulncheck.com/advisories/opencti-directory-traversal [ADVISORY]
https://github.com/OpenCTI-Platform/opencti [PACKAGE]
https://www.exploit-db.com/exploits/48595 [EVIDENCE]