Stored XSS Vulnerability in SYSGUARD 6001 by Eksagate Electronic Engineering
CVE-2026-8403

6.1MEDIUM

Key Information:

Vendor: Eksagate Electronic Engineering And Computer Industry Trade Inc.
Status: Sysguard 6001
Vendor: CVE Published:; 30 June 2026

🔔 Create Eksagate Electronic Engineering And Computer Industry Trade Inc. Vulnerability Alert

What is CVE-2026-8403?

A stored cross-site scripting (XSS) vulnerability exists in the SYSGUARD 6001 product by Eksagate Electronic Engineering and Computer Industry Trade Inc. This issue arises due to improper handling of input during web page generation, allowing attackers to inject malicious scripts that get stored in the application and executed when users access affected pages. All versions of SYSGUARD 6001 between 2.0.2 and prior to 6.1.4.0 are impacted. It is important to note that the vendor no longer supports this product, which may leave users vulnerable to potential exploitation.

Affected Version(s)

SYSGUARD 6001 2.0.2 < 6.1.4.0

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/...

government-resource

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2026
Vulnerability Reserved
May 12, 2026

Credit

Talha YILDIZ

CVE-2026-8403 Data

JSON