CVE-2026-6886 - Vulnerability Analysis
CriticalCVSS: 9.8Last Updated: April 23, 2026
BorG Technology Corporation Borg SPM - Authentication Bypass
Published: April 23, 2026Updated: April 23, 2026Remote Exploitable
Overview
BorG Technology Corporation Borg SPM 2007 contains an authentication bypass caused by improper authentication checks, letting unauthenticated remote attackers log in as any user, exploit requires no special privileges.
Severity & Score
Severity: Critical
CVSS Score: 9.8
Impact
Unauthenticated remote attackers can log in as any user, leading to full system compromise.
Mitigation
Update to the latest available version or apply vendor patches if available.
References
Related Resources
Details
- CVE ID
- CVE-2026-6886
- Severity
- Critical
- CVSS Score
- 9.8
- Type
- broken_authentication
- Status
- new
CWE
- CWE-1390
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H