SecBoard
Back to CVE overview

CVE-2026-15409

CRITICAL(10.0)KEV — Actively Exploited

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Risk Signal Score65/100 — HOCH
  • CVSS 10 — Kritisch
  • Im CISA KEV-Katalog (aktiv ausgenutzt)
  • Weniger als 24 Stunden alt

Mentions (last 60 days)

Articles

CISA KEV

Confirmed exploited

EPSS-Score

1%

Exploit Probability (30 days)

CVSS Score

10

Technical Severity

Description

A Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. A remote unauthenticated attacker could potentially cause the appliance to make requests to unintended location.

References