CVE Catalog

CVE-2026-40781

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.29%

21th percentile - higher than 21% of all known CVEs

Summary

Versions of ReviewX <= 2.3.6 have an issue with unauthenticated broken authentication, potentially allowing attackers to access the system without proper credentials.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, leading to serious security breaches.

Recommendation

It is recommended to upgrade to the latest version of ReviewX to mitigate this vulnerability and implement additional security measures.

Original NVD description (English source)

Unauthenticated Broken Authentication in ReviewX <= 2.3.6 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS