CVE-2026-8993 in D.Launcher 2thông tin

Tóm tắt

Bởi MITRE • 02/06/2026

D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF (Server Side Request Forgery) attacks. User interaction is required as potential victim needs to open a specially crafted URL.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

SK-CERT

Đặt trước

19/05/2026

Tiết lộ

02/06/2026

Kiểm duyệt

được chấp nhận

mục

VDB-367920

CPE

sẵn sàng

CWE

CWE-74 (Đã xác nhận)

CVSS

6.5 (CNA)

EPSS

0.00033

KEV

không

Các hoạt động

thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-8993
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-8993
CVE Details	https://www.cvedetails.com/cve/CVE-2026-8993/

◂ Trước Tổng Quan Tiếp theo ▸

Want to know what is going to be exploited?

We predict KEV entries!