PT-2026-2859 · Bluvoyix · Bluvoyix
Eaton Zveare
·
Published
2026-01-14
·
Updated
2026-01-14
·
CVE-2026-22236
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/RE:M/U:Red |
Name of the Vulnerable Software and Affected Versions
BLUVOYIX (affected versions not specified)
Description
The software contains an improper authentication issue in its backend APIs. A remote attacker who does not have valid credentials can exploit this by sending crafted HTTP requests to the vulnerable APIs. Successful exploitation could grant the attacker full access to customer data and complete compromise of the platform.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bluvoyix