Validation Vulnerability in TAO 2.0 Suite by T Systems
CVE-2026-7185

6MEDIUM

Key Information:

Vendor

T-systems

Status
Vendor
CVE Published:
6 July 2026

What is CVE-2026-7185?

A validation vulnerability has been detected within specific web features related to file management and upload in multiple versions of T Systems' TAO 2.0 suite. This flaw may enable an attacker to exploit the affected features, potentially accessing file system resources that lie outside the intended scope of the application, thereby posing significant risks to system integrity and confidentiality.

Affected Version(s)

Archivo 0 < 2602.00

Buroweb 0 < 2602.00

eStima 0 < 2602.00

References

CVSS V4

Score:
6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

T-Systems’ internal security team
.