CVE Catalog

CVE-2026-54803

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Summary

Versions of SMS Alert Order Notifications up to 3.9.4 contain a vulnerability that allows subscriber privilege escalation.

Risk Assessment

An attacker may gain elevated privileges, potentially leading to unauthorized access to system data or functions.

Recommendation

It is recommended to upgrade to the latest version to mitigate this vulnerability.

Original NVD description (English source)

Subscriber Privilege Escalation in SMS Alert Order Notifications <= 3.9.4 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS