Cross-Site Scripting Vulnerability in LimRAD NAC by Limatek System Inc.
CVE-2026-6371

4.8MEDIUM

Key Information:

Vendor
CVE Published:
8 July 2026

What is CVE-2026-6371?

An input validation flaw in LimRAD NAC by Limatek System Inc. allows attackers to exploit stored cross-site scripting (XSS) vulnerabilities. This can facilitate the injection of malicious scripts that run in the browsers of users accessing affected web interfaces, leading to potential data theft, session hijacking, or other harmful actions. Users should be aware that this vulnerability impacts LimRAD NAC up until 08072026, and the vendor has not responded to initial disclosure attempts.

Affected Version(s)

LimRAD NAC 0 <= 08072026

References

CVSS V3.1

Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Yusuf Kamil ÇAVUŞOĞLU
.