Skip to content

CVE lookup

CVE-2026-58166

Pruva has a verified reproduction for CVE-2026-58166: OpenBMB ChatDev unauthenticated path traversal file upload. The canonical evidence record is REPRO-2026-00238.

REPRO

REPRO-2026-00238

Package

OpenBMB/ChatDev · github

Severity

CRITICAL

Status

published