A vulnerability classified as problematic was found in DFIR-IRIS up to 2.4.27 . This vulnerability affects the function IRIS_Excessive_Data_Exposure . The manipulation results in information disclosure. This vulnerability was named CVE-2026-42539 . The attack may be performed from remote. In addition, an exploit is available. Upgrading the affected component is advised.