CVE-2026-8671 – Avantra
CVSS 7.5
IMPORTANT
“Session and logging weaknesses in automation platforms can expose privileged operations and sensitive data.”
syslink software AG released patches for two vulnerabilities affecting Avantra. CVE-2026-8670 has a CVSS score of 9.6, which is Critical severity. CVE-2026-8671 has a CVSS score of 7.5, which is High severity.
The update addresses session expiration and sensitive information exposure risks. One vulnerability could allow privilege escalation, while the other could expose sensitive data through logs or diagnostic output.
Key Details
- Affected Product
- Avantra Avantra
- Attack Vector
- Adjacent
- Attack Complexity
- Low
- Privileges Required
- High
- User Interaction
- None
- CWE Classification
- CWE-532
Patch this CVE on all your endpoints in under 5 minutes.
First 200 endpoints are free forever, scale as needed.