CVE-2026-6371
Stored XSS in Limatek's LimRAD NAC
CVSS Score
4.8
EPSS Score
0.0%
EPSS Percentile
0th
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Limatek System Inc. LimRAD NAC allows Stored XSS. This issue affects LimRAD NAC: through 08072026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
| CWE | CWE-79 |
| Vendor | limatek system inc. |
| Product | limrad nac |
| Published | Jul 8, 2026 |
| Last Updated | Jul 8, 2026 |
Stay Ahead of the Next One
Get instant alerts for limatek system inc. limrad nac
Be the first to know when new medium vulnerabilities affecting limatek system inc. limrad nac are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None
Affected Versions
Limatek System Inc. / LimRAD NAC
0 ≤ 08072026
References
Credits
Yusuf Kamil ÇAVUŞOĞLU