CVE-2026-6886
9.8 CRITICALBorg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthen...
Published: 2026-04-23 · Last updated: 2026-05-19
Severity and scoring
- CVSS
- 9.8 CRITICAL
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-1390
Description
Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attackers to log into the system as any user.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-0274 — An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an un...
- CVE-2026-6274 — Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and ... (9.8 CRITICAL)
- CVE-2026-44237 — FreePBX is an open source IP PBX (8.1 HIGH)
- CVE-2026-49323 — Weak authentication between the Wireless Control Module (WCM) and the Engine Control Module (ECM) of the Indian Motorcycle Scout Bobber +... (4.3 MEDIUM)
- CVE-2026-49322 — Weak authentication in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-... (4.3 MEDIUM)