CVE-2026-42336 | 1Panel-dev MaxKB up to 2.8.0 OSS File Service toctou (GHSA-6m4p-9wwc-4q5q)

A vulnerability was found in 1Panel-dev MaxKB up to 2.8.0. It has been declared as problematic. Affected is an unknown function of the component OSS File Service. The manipulation results in time-of-check time-of-use.

This vulnerability is identified as CVE-2026-42336. The attack can only be performed from the local network. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More