CVE lookup
CVE-2026-58166
Pruva has a verified reproduction for CVE-2026-58166: OpenBMB ChatDev unauthenticated path traversal file upload. The canonical evidence record is REPRO-2026-00238.
REPRO
REPRO-2026-00238
Package
OpenBMB/ChatDev · github
Severity
CRITICAL
Status
published