PatchSiren

Armiya Information Technologies Ltd. Co. CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Armiya Information Technologies Ltd. Co. CVE published 2026-07-07

CVE-2026-8377

CVE-2026-8377 is a Missing Authorization vulnerability in Armiya Information Technologies Ltd. Co. Access Control System (GKS). The issue allows Collect Data from Common Resource Locations and affects Access Control System (GKS) before Version 2. This vulnerability has a high CVSS score of 8.2, indicating a high severity. The lack of authorization mechanism in GKS allows attackers to collect data from com [truncated]

MEDIUM Armiya Information Technologies Ltd. Co. CVE published 2026-07-07

CVE-2026-8309

CVE-2026-8309 is a reflected cross-site scripting (XSS) vulnerability in Armiya Information Technologies Ltd. Co.'s Access Control System (GKS) before Version 2. The issue allows attackers to inject malicious scripts into web pages, potentially leading to unauthorized actions or data theft. This vulnerability has a CVSS score of 5.4 and is classified as MEDIUM severity. Users of affected versions should u [truncated]

MEDIUM Armiya Information Technologies Ltd. Co. CVE published 2026-07-07

CVE-2026-8306

CVE-2026-8306 is a Stored XSS vulnerability affecting Armiya Information Technologies Ltd. Co.'s Access Control System (GKS) before Version 2. This issue allows attackers to inject malicious scripts, potentially leading to unauthorized actions and data breaches. Users of Access Control System (GKS) before Version 2 should apply updates to prevent Stored XSS attacks and review system configurations to ensu [truncated]

MEDIUM Armiya Information Technologies Ltd. Co. CVE published 2026-07-07

CVE-2026-7380

CVE-2026-7380 is a MEDIUM severity vulnerability in Armiya Information Technologies Ltd. Co. Access Control System (GKS) before Version 2. The vulnerability is an improper neutralization of Script-Related HTML tags in a web page (basic XSS) that allows XSS Targeting HTML Attributes. This issue affects users of Armiya Information Technologies Ltd. Co. Access Control System (GKS) before Version 2. The vulne [truncated]