PatchSiren cyber security CVE debrief

CVE-2026-35089 Slican CVE debrief

A critical vulnerability in Slican telephone exchanges allows unauthenticated attackers to predictably generate administrative secure keys, enabling full system compromise. The flaw stems from deterministic key generation using exchange properties obtainable without authentication. Affected systems include IPx series, CCT-1668, MAC-6400, and CXS-0424 models. Patched versions are available for supported hardware, but end-of-life devices (versions 4.xx and below, discontinued 2011-2012) remain vulnerable and require hardware upgrades. The CVSS 4.0 score of 8.7 reflects high confidentiality impact with network-based, unauthenticated attack vectors. Organizations should prioritize patching supported devices and planning hardware replacements for discontinued models.

Vendor: Slican
Product: IPx
CVSS: HIGH 8.7
CISA KEV: Not listed in stored evidence
Original CVE published: 2026-05-27
Original CVE updated: 2026-05-27
Advisory published: 2026-05-27
Advisory updated: 2026-05-27

Who should care

Telecommunications infrastructure operators, PBX administrators, security teams managing voice networks, and organizations with legacy Slican telephone exchange deployments requiring hardware lifecycle planning.

Technical summary

The vulnerability exists in the secure key generation mechanism of Slican telephone exchanges. The key is derived using properties of the telephone exchange that can be obtained by an unauthenticated remote attacker. This deterministic generation allows attackers to compute the secure key and subsequently obtain administrative credentials. The flaw affects multiple product lines with varying patch availability. Supported devices receive firmware updates, while end-of-life hardware requires physical replacement to remediate.

Defensive priority

critical

Recommended defensive actions

Upgrade IPx series telephone exchanges to version 6.61.0040 or later
Upgrade CCT-1668 and MAC-6400 telephone exchanges to version 6.56.0430 or later
Upgrade CXS-0424 telephone exchanges to version 6.30.0510 or later
Contact Slican service department for hardware upgrade options on end-of-life CCT-1668 (CCT1CPU), MAC-6400, and CXS-0424 devices running version 4.xx or below
Implement network segmentation to restrict telephone exchange management interfaces from untrusted networks
Monitor for unauthorized administrative access attempts on affected telephone exchange systems
Inventory all Slican telephone exchange deployments to identify model versions and patch status

Evidence notes

Vulnerability disclosed via CERT.pl coordinated disclosure. CVSS 4.0 vector confirms network attack vector with no privileges required. Vendor acknowledges hardware dependency for patch deployment on EOL devices.

Official resources

2026-05-27