CVE-2026-8244

MEDIUM 5.3

Industrial Application Software IAS Canias ERP Login RMI improper authentication

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

15th

A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This impacts an unknown function of the component Login RMI Interface. The manipulation of the argument clientVersion leads to improper authentication. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

CWE	CWE-287
Vendor	industrial application software ias
Product	canias erp
Published	May 10, 2026
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for industrial application software ias canias erp

Be the first to know when new medium vulnerabilities affecting industrial application software ias canias erp are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Industrial Application Software IAS / Canias ERP

8.03

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/362460 vuldb.com: https://vuldb.com/vuln/362460/cti vuldb.com: https://vuldb.com/submit/808326 gist.github.com: https://gist.github.com/0xb1lal/758bbc5e4d82efea248e675da934ac69

Credits

🔍 b1lal (VulDB User) b1lal (VulDB User) VulDB CNA Team