CVE-2026-9057

Summary

A broken access control issue has been identified in the Talend Administration Center, that allows a user with “View” permission to modify the Talend Studio update URL. This issue was resolved in a patch, which is already available.

Affected Software

VendorProductVersion RangeStatus
TalendTalend Administration Center8.0 < Patch_20251121_QTAC-1471_R2025-11_v1-8.0.1affected

Weaknesses

  • CWE-284: Improper Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References