Back to CVE overview
CVE-2026-15410
HIGH(7.2)KEV — Actively ExploitedCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Risk Signal Score58/100 — HOCH
- CVSS 7.2 — Hoch
- Im CISA KEV-Katalog (aktiv ausgenutzt)
- Weniger als 24 Stunden alt
Mentions (last 60 days)
Articles
CISA KEV
Confirmed exploited
EPSS-Score
2%
Exploit Probability (30 days)
CVSS Score
7.2
Technical Severity
Description
Post-authentication improper control of generation of code ('Code Injection') vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) which in specific conditions could potentially enable a remote authenticated attacker as administrator to execute arbitrary OS commands.