SCA: security update for com.arcadedb:arcadedb-server (GHSA-48qw-824m-86pr)

high Tenable Cloud Security Plugin ID 444792

Description

ArcadeDB: Privilege escalation via reader role in /api/v1/command JS scripting language — arbitrary host file read

Solution

Update the com.arcadedb:arcadedb-server library and its related packages to version 26.7.1 or later.

See Also

https://github.com/advisories/GHSA-48qw-824m-86pr

Plugin Details

Severity: High

ID: 444792

Version: Revision 1.1

Type: Local

Family: SCA Checks

Published: 7/17/2026

Updated: 7/17/2026

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 7/16/2026

Vulnerability Publication Date: 7/16/2026

Reference Information