PT-2026-28357 · Unknown · Sicore Base System+1

Thomas Weber

Publicado

2026-03-26

Atualizado

2026-04-16

CVE-2026-27664

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions CPCI85 Central Processing/Communication versions prior to V26.10 SICORE Base system versions prior to V26.10.0

Description An out-of-bounds write issue exists when parsing specially crafted XML inputs. This could allow an unauthenticated attacker to send a malicious XML request, potentially causing a denial-of-service condition by crashing the service. Multiple reports indicate offensive activities targeting these systems.

Recommendations Update CPCI85 Central Processing/Communication to version 26.10 or later. Update SICORE Base system to version 26.10.0 or later.

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2026-27664

Produtos afetados

Cpci85 Central Processing/Communication

Sicore Base System

PT-2026-28357 · Unknown · Sicore Base System+1

CVE-2026-27664

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9