CVE-2026-32650

CVSS v3.1

7.5

High

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-757

Related Identifiers

CVE-2026-32650

Affected Products

Anviz Crosschex Standard

CVE-2026-32650

Weakness Enumeration

Related Identifiers

Affected Products

References · 4