OpenCTI Vulnerability Allows Bypassing Security Measures

CERT-Bund Security Advisories

Published March 16th, 2026

Detected March 17th, 2026

Summary

CERT-Bund has issued a security advisory for OpenCTI, a cyber threat intelligence platform. A vulnerability (CVE) allows remote, authenticated attackers to bypass security measures. The advisory affects OpenCTI versions prior to 6.9.1.

View original document View source feed page

What changed

CERT-Bund has released a security advisory (WID-SEC-2026-0746) detailing a vulnerability in OpenCTI, an open-source platform used for managing cyber threat intelligence. The vulnerability, with a CVSS Base Score of 6.5, allows remote, authenticated attackers to bypass security measures. This affects versions of OpenCTI prior to 6.9.1, running on Linux and UNIX operating systems.

Organizations utilizing OpenCTI should update to version 6.9.1 or later to mitigate this risk. Failure to update could expose systems to unauthorized access and compromise of sensitive threat intelligence data. While no specific compliance deadline is mentioned, prompt patching is strongly advised to prevent exploitation.

What to do next

Update OpenCTI to version 6.9.1 or later.
Review system logs for any signs of exploitation.

Source document (simplified)

[WID-SEC-2026-0746] OpenCTI: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen CVSS Base Score 6.5 (mittel) CVSS Temporal Score 5.7 (mittel) Remoteangriff ja Datum 16.03.2026 Stand 17.03.2026 Mitigation ja

Betroffene Systeme

Betriebssystem

Linux
UNIX

Produktbeschreibung

OpenCTI ist eine Open-Source-Plattform für Organisationen zur Verwaltung ihres Wissens und ihrer Beobachtungen im Bereich Cyber Threat Intelligence.

Produkte

16.03.2026
- Open Source OpenCTI <6.9.1

Angriff

Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in OpenCTI ausnutzen, um Sicherheitsvorkehrungen zu umgehen. CVE Informationen Versionshistorie Feedback zum Advisory geben