CVSS 9.8 · CRITICAL
CVE-2026-6886
Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attackers to log into the system as any user.
Ver en NVDAnálisis
Borg SPM 2007 is an obsolete enterprise product that has been discontinued since 2008. While the authentication bypass vulnerability is critical, the software is extremely unlikely to be in use within the modern MexicoDev ecosystem given its age and niche regional vendor.
Severidad
Puntaje: 9.8(CRITICAL)
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HAV: NETWORK
AC: LOW
PR: NONE
UI: NONE
S: UNCHANGED
C: HIGH
I: HIGH
A: HIGH
Tipo de falla (CWE):
CWE-1390EPSS
Probabilidad de explotación (próx. 30 días): 0.0019 (0.2%)
Percentil: 40.5%
EPSS: 2026-05-06
Descripción técnica
Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attackers to log into the system as any user.
Publicada: 23/4/2026, 10:16:18
Última modificación: 24/4/2026, 14:50:56