A vulnerability classified as critical has been found in Industrial Application Software IAS Canias ERP 8.03 . This vulnerability affects the function iasRequestFileEvent of the component RMI Interface . This manipulation of the argument m_strSourceFileName causes path traversal. This vulnerability is handled as CVE-2026-8215 . The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.