CVE-2026-42277 | Onyx up to 3.0.8/3.1.5/3.2.5 Endpoint /chat/file/ authorization (GHSA-vg3h-35f7-7w6r)

SecurityVulns
Yanac

A vulnerability described as problematic has been identified in Onyx up to 3.0.8/3.1.5/3.2.5. Affected by this vulnerability is an unknown functionality of the file /chat/file/ of the component Endpoint. The manipulation results in authorization bypass.

This vulnerability is known as CVE-2026-42277. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More