CVE-2026-1363

Summary

IAQS and I6 developed by JNC has a Client-Side Enforcement of Server-Side Security vulnerability, allowing unauthenticated remote attackers to gain administrator privileges by manipulating the web front-end.

Affected Software

VendorProductVersion RangeStatus
JNCIAQS0affected
JNCI60affected

Weaknesses

  • CWE-603: CWE-603 Use of Client-Side Authentication

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References