Hard-coded Cryptographic Key Vulnerability in IAS Canias ERP Software by Industrial Application Software
CVE-2026-8243

6.9MEDIUM

Key Information:

Vendor

Industrial Application Software Ias

Status
Canias Erp
Vendor
CVE Published:
10 May 2026

What is CVE-2026-8243?

A vulnerability has been identified in IAS Canias ERP version 8.03, specifically within the JNLP Deployment Endpoint component. This vulnerability allows an attacker to manipulate the system and leverage hard-coded cryptographic keys, potentially compromising security measures. The potential attack vector is remote, highlighting a significant area of concern for users and organizations relying on this software. It is important to note that the vendor has been contacted regarding this issue but has not provided a response.

Affected Version(s)

Canias ERP 8.03

References

https://vuldb.com/vuln/362459
vdb-entry
https://vuldb.com/vuln/362459/cti
signaturepermissions-required
https://vuldb.com/submit/808296
third-party-advisory

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

b1lal (VulDB User)
VulDB CNA Team
.