CVE Catalog
CVE-2026-40781
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk0.29%
21th percentile - higher than 21% of all known CVEs
Summary
Versions of ReviewX <= 2.3.6 have an issue with unauthenticated broken authentication, potentially allowing attackers to access the system without proper credentials.
Risk Assessment
Organizations may be exposed to unauthorized access to sensitive data, leading to serious security breaches.
Recommendation
It is recommended to upgrade to the latest version of ReviewX to mitigate this vulnerability and implement additional security measures.
Original NVD description (English source)
Unauthenticated Broken Authentication in ReviewX <= 2.3.6 versions.

