Cyber Resilience

CVE-2026-22810

HighUpdated

Published: 18 May 2026

Published
18 May 2026
Modified
02 June 2026
KEV Added
Patch
CVSS Score v3.1 8.2 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
EPSS Score 0.0021 10.8th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-22810 is a high-severity Path Traversal: '../filedir' (CWE-24) vulnerability in Joplinapp Joplin. Its CVSS base score is 8.2 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Stored Data Manipulation (T1565.001); ranked at the 10.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions prior to 3.5.7 contain a path traversal vulnerability in the importer which allows overwriting arbitrary files on disk. The OneNote converter does not…

more

sanitize the names of embedded files before writing them to disk. As a result, it's possible for an attacker to create a malicious .one file that includes file names containing ../../, that are then interpreted as part of the target path when extracting attachments from the .one file. This issue has been patched in version 3.5.7.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1565.001 Stored Data Manipulation Impact
Adversaries may insert, delete, or manipulate data at rest in order to influence external outcomes or hide activity, thus threatening the integrity of the data.
Why these techniques?

Path traversal enables arbitrary file overwrite on import of malicious file, directly facilitating stored data manipulation.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-27920Shared CWE-24
CVE-2025-63298Shared CWE-24
CVE-2026-39813Shared CWE-24
CVE-2026-40318Shared CWE-24
CVE-2026-41082Shared CWE-24
CVE-2025-61318Shared CWE-24
CVE-2025-0390Shared CWE-24
CVE-2025-53513Shared CWE-24
CVE-2025-60344Shared CWE-24
CVE-2025-67364Shared CWE-24

Affected Assets

joplinapp
joplin
≤ 3.5.7
msiemens
one2html
≤ 1.3.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References