Sandbox Escape Vulnerability in Beghelli Sicuro24 SicuroWeb Due to AngularJS Component
CVE-2026-41468

9.3CRITICAL

Key Information:

Vendor

Beghelli

Status
Sicuroweb (sicuro24)
Vendor
CVE Published:
22 April 2026

Badges

๐Ÿ‘พ Exploit Exists

What is CVE-2026-41468?

The Beghelli Sicuro24 SicuroWeb platform embeds the outdated AngularJS 1.5.2, which is known to contain vulnerabilities that enable sandbox escape through its use of deprecated components. These vulnerabilities, when exploited in conjunction with a template injection flaw present in the application, permit attackers to break out of the AngularJS sandbox. As a result, they can execute arbitrary JavaScript code within the browser sessions of operators, leading to potential session hijacking, manipulation of Document Object Model (DOM), and even persistent compromises to the browser. Additionally, attackers on the same network can exploit this vulnerability via man-in-the-middle (MITM) attacks, thus injecting malicious payloads without any direct interaction from users, especially in deployments not secured with HTTPS.

Affected Version(s)

SicuroWeb (Sicuro24) 0

References

https://www.boffsec-services.com/posts/sicuroweb-cve-2026...
technical-descriptionexploit
https://github.com/kmkz/Exploits/blob/master/2026/CVE-202...
exploit
https://github.com/kmkz/Exploits/blob/master/2026/CVE-202...
technical-description

CVSS V4

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Jean-Marie Bourbon of Bourbon Offensive Security Services
VulnCheck
.