CVE-2026-33584
5.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Summary
Exposed Keycloak management service in the Arqit Symmetric Key Agreement Platform enables unauthorized access to sensitive debug information such as metrics and health data. This issue affects Symmetric Key Agreement Platform: before 26.03.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Arqit | Symmetric Key Agreement Platform | 0 < 26.03 | affected |
Weaknesses
- CWE-749: CWE-749 Exposed dangerous method or function
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.