← back
CVE-2026-0873

Privilege Elevation in Ercom Cryptobox administration console

CVSS 4.8 MEDIUMEPSS 0.2%CWE-1220CWE-79
On a Cryptobox platform where administrator segregation based on entities is used, some vulnerabilities in Ercom Cryptobox administration console allows an authenticated entity administrator with knowledge to elevate his account to global administrator.
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:U
Affected products
Ercom · Cryptobox

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://info.cryptobox.com/doc/v4.40/4.40.en/