216.73.217.64

CVE-2026-42251

· Published 01/06/2026 15:16 · Modified 01/06/2026 16:37

Labels: CVE-2026-42251 2026-06-01CVE-2026-42251CWE-798[email protected]

Essential information

Published
01/06/2026 15:16
Modified
01/06/2026 16:37
Author
Creator
CVSS
8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Use of hard-coded credentials in KS-SOMED allowed an unauthorized attacker access to FTP server that hosted the application's update packages. The attacker with these credentials could upload a malicious update file, which then may have been distributed and installed on client machines as a legitimate update. This issue affects KS-SOMED with modules: KSPLUPDFTP.exe up to 30.00.00.056 and ANEKSKLIENT.EXE up to 29.00.02.026 Beside removing the hard-coded credentials from the code and changing the update process, access granted by previously exposed credentials was limited to read-only.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ks-somed / ks-somed cpe:2.3:a:ks-somed:ks-somed:30.00.00.056:*:*:*:*:*:*:*
ks-somed / ks-somed cpe:2.3:a:ks-somed:ks-somed:<30.00.00.056:*:*:*:*:*:*:*
ks-somed / ks-somed cpe:2.3:a:ks-somed:ks-somed:<29.00.02.026:*:*:*:*:*:*:*

References