CVE-2026-24815

Vulnerability Description

Unrestricted Upload of File with Dangerous Type, Deserialization of Untrusted Data vulnerability in datavane tis (tis-plugin/src/main/java/com/qlangtech/tis/extension/impl modules). This vulnerability is associated with program files XmlFile.Java. This issue affects tis: before v4.3.0.

Related Weaknesses (CWE)

CWE-434 CWE-502

References

https://github.com/datavane/tis/pull/443

FAQ

What is CVE-2026-24815?

CVE-2026-24815 is a documented vulnerability. Unrestricted Upload of File with Dangerous Type, Deserialization of Untrusted Data vulnerability in datavane tis (tis-plugin/src/main/java/com/qlangtech/tis/extension/impl modules). This vulnerability...

How severe is CVE-2026-24815?

CVSS scoring is not yet available for CVE-2026-24815. Check NVD for updates.

Is there a patch for CVE-2026-24815?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.