Back to overview

CVE-2026-41993

MEDIUM
4.4
CVSS 3.1
Description
Improper Access Control vulnerability in the Removable Media Validation function of TXOne Networks products allows a local attacker with administrator privileges to bypass the file lockdown mechanism, resulting in unauthorized file transfer to the victim device. The attacker needs to deploy unauthorized file on the removable media in advance. This issue affects SafePortAgent: before 3.2.5024; StellarProtect: from 3.2.4011 before 5.0.1083.

Metadata

CVE ID
CVE-2026-41993
State
PUBLISHED
Assigner
TXOne
Reserved
2026-04-23 09:55 UTC
Published
2026-07-17 03:50 UTC
Last updated
2026-07-17 03:50 UTC
Vendor / Product
TXOne Networks / SafePortAgent
Sources
cve.org  ·  NVD

Severity & Metrics

4.4 MEDIUM CVSS 3.1
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Affected products (2)
VendorProductPlatformVersions
TXOne Networks SafePortAgent 0 < 3.2.5024
TXOne Networks StellarProtect 3.2.4011 < 5.0.1083
CVSS scores (2)
ScoreSeverityVersionSourceVector
6.7 MEDIUM 4.0 cna CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
4.4 MEDIUM 3.1 cna CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Back to overview