CVE-2025-13926
CRITICALContemporary Controls BASC 20T Reliance on Untrusted Inputs in a Security Decision
Title source: cnaDescription
An attacker could use data obtained by sniffing the network traffic to forge packets in order to make arbitrary requests to Contemporary Controls BASC 20T.
Scores
CVSS v3
9.8
EPSS
0.0044
EPSS Percentile
35.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-807
Status
published
Products (1)
Contemporary Controls/BASControl20
3.1
Published
Apr 09, 2026
Tracked Since
Apr 10, 2026