Missing Authorization Vulnerability in Pandora FMS by Pandora FMS
CVE-2026-30811

8.4HIGH

Key Information:

Vendor: Pandora Fms
Status: Pandora Fms
Vendor: CVE Published:; 13 April 2026

🔔 Create Pandora Fms Vulnerability Alert

What is CVE-2026-30811?

A missing authorization vulnerability in Pandora FMS allows unauthorized access to sensitive information via a misconfigured endpoint. This exposure compromises the confidentiality of the data and can lead to serious security implications for users. It is essential to apply the appropriate fixes to ensure the integrity of the system and safeguard sensitive information.

Affected Version(s)

Pandora FMS all 777 <= 800

References

https://pandorafms.com/en/security/common-vulnerabilities...

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 13, 2026
Vulnerability Reserved
Mar 5, 2026

Credit

Pedro J. Núñez-Cacho Fuentes <tunelko@gmail.com>

CVE-2026-30811 Data

JSON