CRITICAL
Ciser System SL
CVE published 2026-03-02
CVE-2026-2584
A critical SQL injection vulnerability in an authentication module allows unauthenticated remote attackers to compromise system configuration data through crafted login interface queries. The vulnerability carries a CVSS 4.0 score of 9.3 (Critical) with network attack vector, low complexity, and no privileges required. Confidentiality and integrity impacts are rated high, though availability remains unaff [truncated]