Tag
critical
advisory
Simopro WinMatrix Agent Missing Authentication Vulnerability (CVE-2026-6348)
2 rules 2 TTPs 1 CVEThe WinMatrix agent by Simopro Technology suffers from a missing authentication vulnerability (CVE-2026-6348), enabling local authenticated attackers to execute arbitrary code with SYSTEM privileges on the local machine and all hosts within the agent's environment.
CVE-2026-6348
missing-authentication
privilege-escalation
windows
2r
2t
1c
high
advisory
Galaxy Software Services Vitals ESP Missing Authentication Vulnerability (CVE-2026-4640)
2 rules 1 TTP 3 IOCsVitals ESP developed by Galaxy Software Services suffers from a missing authentication vulnerability (CVE-2026-4640), enabling unauthenticated remote attackers to execute functions and obtain sensitive information.
cve-2026-4640
missing-authentication
vitals-esp
2r
1t
3i