QSearchQSearch

CVE-2026-0274

An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an un...

Published: 2026-06-10 · Last updated: 2026-06-10

Severity and scoring

CWE
CWE-1390

Description

An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an unauthenticated attacker to access and modify protected resources.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-6274 Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and ... (9.8 CRITICAL)
  • CVE-2026-44237 FreePBX is an open source IP PBX (8.1 HIGH)
  • CVE-2026-49323 Weak authentication between the Wireless Control Module (WCM) and the Engine Control Module (ECM) of the Indian Motorcycle Scout Bobber +... (4.3 MEDIUM)
  • CVE-2026-49322 Weak authentication in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-... (4.3 MEDIUM)
  • CVE-2026-40417 Weak authentication in Dynamics Business Central allows an authorized attacker to elevate privileges locally (7.8 HIGH)