Missing Authentication Vulnerability in RTI Connext Professional Security Plugins
CVE-2026-2675

6MEDIUM

Key Information:

Vendor: Rti
Status: Connext Professional
Vendor: CVE Published:; 17 June 2026

What is CVE-2026-2675?

A vulnerability exists in the RTI Connext Professional security plugins that allows unauthorized users to bypass authentication, potentially enabling them to spoof data sources. This flaw affects multiple versions of the product, where authentication requirements for critical functions have not been properly enforced, posing a risk of data integrity and security breaches.

Affected Version(s)

Connext Professional 7.4.0 < 7.7.0

Connext Professional 7.0.0 < 7.3.1.3

Connext Professional 6.1.0 < 6.1.*

References

https://www.rti.com/vulnerabilities/#cve-2026-2675

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
Feb 18, 2026

CVE-2026-2675 Data

JSON

Rti

What is CVE-2026-2675?

Affected Version(s)

References

CVSS V4

Timeline