9.8
CVE-2026-31151
- EPSS 0.38%
- Veröffentlicht 06.04.2026 00:00:00
- Zuletzt bearbeitet 10.04.2026 18:02:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginAn issue in the login mechanism of Kaleris YMS v7.2.2.1 allows attackers to bypass login verification to access the application 's resources.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Kaleris ≫ Yard Management Solutions Version7.2.2.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.38% | 0.298 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-288 Authentication Bypass Using an Alternate Path or Channel
The product requires authentication, but the product has an alternate path or channel that does not require authentication.
https://kaleris.com/solutions/yard-management/
https://github.com/Henkel-CyberVM/CVEs/tree/main/CVE-2026-31151