CVE-2024-26291 | Avid NEXIS E-series prior 2025.5.1 on Linux/Windows filename improper authorization

A vulnerability was found in Avid NEXIS E-series, NEXIS F-series, NEXIS PRO+ and System Director Appliance on Linux/Windows. It has been declared as critical. This vulnerability affects unknown code. The manipulation of the argument filename leads to improper authorization.

This vulnerability was named CVE-2024-26291. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More