CVE-2026-21404 | Navtor NavBox up to 4.16.1.20 SOAP Interface hard-coded credentials (icsa-26-155-01)

Inserito da Angelo Barbosa | Giu 4, 2026 | CVE

A vulnerability, which was classified as critical, was found in Navtor NavBox up to 4.16.1.20. Affected by this vulnerability is an unknown functionality of the component SOAP Interface. The manipulation results in hard-coded credentials.

This vulnerability is reported as CVE-2026-21404. The attack requires a local approach. No exploit exists.

You should upgrade the affected component.

CVE-2026-21404 | Navtor NavBox up to 4.16.1.20 SOAP Interface hard-coded credentials (icsa-26-155-01)

Post correlati

CVE-2024-28061 | Apiris Kafeo 6.4.4 Embedded Database File Privilege Escalation

CVE-2024-12454 | Affiliate Program Suite Plugin up to 1.1.23 on WordPress cross-site request forgery

CVE-2024-2539 | Livemesh Elementor Addons Plugin up to 8.3.6 on WordPress widget_id cross site scripting

CVE-2024-25091 | Js Communications RevoWorks SCVX/RevoWorks Browser VirusChecker/ThreatChecker protection mechanism