CVE-2026-42539 – IRIS has an Excessive Data Exposure issue

CVE ID :CVE-2026-42539

Published : June 4, 2026, 10:16 p.m. | 16 minutes ago

Description :IRIS is a web collaborative platform that helps incident responders share technical details during investigations. Versions prior to 2.4.28 return sensitive data to the user which are not required for the client’s operation. Version 2.4.28 contains a patch.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…