Critical CVE-2026-11414 A hard-coded cryptographic key is used by Altium Enterprise Server to sign file download URLs in the Vault service. Because the key is identical across all installations, an unauthenticated network attacker who can reach the server can forge valid download signatures and...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[Critical] CVE-2026-11414 – A hard-coded cryptographic key is used by Altium Enterprise Server to sign file ...

VERWANDTEARTIKEL

OWASP CVE Lite CLI – New Tool to Scan for Vulnerabilities in Your Projects

CVE-2026-7654 - Admin Columns <= 7.0.18 - Authenticated (Contributor+) PHP Object Injection to Remote Code Execution via Custom Field Meta Value

[High] CVE-2026-11416 – MoviePilot contains a path traversal vulnerability in the AliPan, U115, and Rclo...

[High] CVE-2026-11424 – A server-side request forgery (SSRF) vulnerability exists in a GraphQL service c...

[Critical] CVE-2026-11429 – A path traversal vulnerability exists in the Git Service component shared by Alt...

[High] CVE-2026-11431 – A path traversal vulnerability exists in the Projects Service download endpoint ...