Infinite Loop Vulnerability in Datavane TIS Product
CVE-2026-24816

10CRITICAL

Key Information:

Vendor: Datavane
Status: Tis
Vendor: CVE Published:; 27 January 2026

What is CVE-2026-24816?

A loop with an unreachable exit condition has been identified in the Datavane TIS, specifically within the 'ChangeDomainAction.Java' program files. This flaw affects versions prior to 4.3.0 and can potentially result in unresponsive software behaviors. Users are advised to update to mitigate risks associated with this vulnerability.

Affected Version(s)

tis 0

References

https://github.com/datavane/tis/pull/444

patch

CVSS V4

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 27, 2026
Vulnerability Reserved
Jan 27, 2026

Credit

TITAN Team (titancaproject@gmail.com)

CVE-2026-24816 Data

JSON