๐Ÿ” CVE Alert

CVE-2026-11889

MEDIUM 6.5

SALTO ProAccess Space Authorization Bypass Through User-Controlled Key

CVSS Score
6.5
EPSS Score
0.0%
EPSS Percentile
0th

SALTO ProAccess Space software using the tenancy feature / logical partition is vulnerable to a privilege escalation attack that could allow an authorized attacker to access any space managed by the affected product.

CWE CWE-639
Vendor salto
Product proaccess space
Published Jul 16, 2026
Stay Ahead of the Next One

Get instant alerts for salto proaccess space

Be the first to know when new medium vulnerabilities affecting salto proaccess space are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None

Affected Versions

SALTO / ProAccess Space
0 < 6.13

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
cisa.gov: https://www.cisa.gov/news-events/ics-advisories/icsa-26-197-07 github.com: https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-197-07.json

Credits

Bernhard Lorenz of Limes Security reported this vulnerability to CISA.