CVE-2026-42251

Hard-coded credentials in KS-SOMED

Assigner: CERT-PL
Reserved: 25.04.2026 Published: 01.06.2026 Updated: 01.06.2026

Use of hard-coded credentials in KS-SOMED allowed an unauthorized attacker access to FTP server that hosted the application's update packages. The attacker with these credentials could upload a malicious update file, which then may have been distributed and installed on client machines as a legitimate update.

This issue affects KS-SOMED with modules: KSPLUPDFTP.exe up to 30.00.00.056 and ANEKSKLIENT.EXE up to 29.00.02.026

Beside removing the hard-coded credentials from the code and changing the update process, access granted by previously exposed credentials was limited to read-only.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
CVSS Score: 8.7

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Network	Confidentiality	High	Confidentiality	None
Attack Complexity	Low	Integrity	None	Integrity	None
Attack Requirements	None	Availability	None	Availability	None
Privileges Required	None
User Interaction	None

CVSS 4.0

Product Status

Vendor	KAMSOFT
Product	KS-SOMED
Versions	Default: unknown affected from 0 to 30.00.00.056 (incl.)

Vendor

KAMSOFT

Product

KS-SOMED

Versions

Default: unknown

affected from 0 to 30.00.00.056 (incl.)

Vendor	KAMSOFT
Product	KS-SOMED
Versions	Default: unaffected affected from 0 to 29.00.02.026 (incl.)

Vendor

KAMSOFT

Product

KS-SOMED

Versions

Default: unaffected

affected from 0 to 29.00.02.026 (incl.)

Credits

Wojciech Giełda finder

References

Problem Types

CWE-798 Use of Hard-coded Credentials CWE

Impacts

CAPEC-37 Retrieve Embedded Sensitive Data