CVE-2026-5413 is a medium-severity vulnerability identified in Newgen OmniDocs up to version 12.0.00. The flaw resides in an unspecified functionality accessible through the /omnidocs/GetWebApiConfiguration endpoint, where the manipulation of the connectionDetails parameter leads to unauthorized information disclosure. This vulnerability can be exploited remotely without requiring authentication or user interaction, increasing its risk profile. However, the attack complexity is high, making exploitation difficult. The vulnerability allows attackers to retrieve sensitive configuration or connection details that could facilitate further attacks or data breaches. Despite the availability of a public exploit, no confirmed active exploitation has been reported. The vendor was notified early but has not issued any response or patch, leaving affected systems exposed. The CVSS 4.0 vector (AV:N/AC:H/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P) reflects a network attack vector with high complexity and low impact on confidentiality, no impact on integrity or availability, and no privileges or user interaction required. This vulnerability highlights the need for organizations to monitor and secure their OmniDocs deployments, especially those exposing the vulnerable endpoint externally.

The primary impact of CVE-2026-5413 is unauthorized disclosure of sensitive information from OmniDocs systems. This could include configuration details, connection strings, or other internal data that attackers can leverage to escalate privileges, move laterally within networks, or conduct further targeted attacks. While the vulnerability does not directly affect data integrity or availability, the information gained could facilitate more severe compromises. Organizations relying on OmniDocs for document management and workflow automation may face increased risk of data breaches, regulatory non-compliance, and reputational damage. The high complexity reduces the likelihood of widespread exploitation, but the presence of a public exploit and lack of vendor response increase the urgency for mitigation. Enterprises with externally accessible OmniDocs instances are particularly vulnerable to remote reconnaissance and information gathering by threat actors.

Given the absence of an official patch or vendor response, organizations should implement compensating controls to mitigate CVE-2026-5413. First, restrict external access to the /omnidocs/GetWebApiConfiguration endpoint using network segmentation, firewalls, or web application firewalls (WAFs) to limit exposure to trusted internal users only. Employ strict access controls and monitor logs for unusual requests targeting this endpoint or suspicious manipulation of the connectionDetails parameter. Conduct thorough audits of OmniDocs configurations to identify and minimize sensitive information exposure. If possible, disable or restrict the vulnerable functionality until a vendor patch is available. Additionally, implement intrusion detection/prevention systems (IDS/IPS) tuned to detect exploitation attempts. Maintain up-to-date backups and incident response plans in case of compromise. Finally, engage with Newgen support channels regularly to track any forthcoming patches or advisories.