Critical Alert 1 Active Exploit Detected Today

CVE-2026-20253 Splunk Enterprise Missing Authentication for Critical Function Vulnerability →
Powered by CVE Watchtower
×
June 19, 2026

CVE Watchtower


← Back to CVE List

CVE-2026-55706NVD

Vulnerability Summary

sppp_pap_input in sys/net/if_spppsubr.c in OpenBSD before 076e2b1 allows authentication bypass via certain zero values for lengths.
Severity Level
MEDIUM(5.8)
Published Date
Jun 17, 2026
Last Modified
Jun 17, 2026
Exploitation Status
No confirmed exploitation yet
EPSS Score (30-Day)
0.24%Probability
Root Weakness (CWE)
CWE-1284: Unknown/Unlisted Weakness
Refer to the official MITRE database for detailed architectural specifications regarding this weakness.
CVSS v3.1 Base Metrics
Attack VectorAdjacent
Attack ComplexityHigh
Privileges RequiredNone
User InteractionNone
ScopeChanged
ConfidentialityLow
IntegrityLow
AvailabilityLow

External References