Owl OPDS Uncontrolled Search Path Element Vulnerability Allowing Configuration File Manipulation

Vulnerability

A vulnerability in Owl OPDS version 2.2.0.4 has been identified, allowing unauthorized manipulation of configuration file search paths. This issue arises from an uncontrolled search path element, which can be exploited through a crafted network request.

Impact

Exploitation of this vulnerability could lead to unauthorized manipulation of configuration files, potentially allowing for further exploitation or misconfiguration of the application.

Added: Feb 20, 2026, 5:45 PM

Updated: Feb 20, 2026, 7:16 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

0.0

relevance

3.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

0.0

relevance

3.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Owl OPDS Uncontrolled Search Path Element Vulnerability Allowing Configuration File Manipulation

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating