CVE-2026-4733 PUBLISHED

Information disclosure in ixray-1.6-stcop

Assigner: GovTech CSG
Reserved: 24.03.2026 Published: 24.03.2026 Updated: 24.03.2026

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CVSS Score: 5.3

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	None
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	Low

CVSS 3.1

Product Status

Vendor	ixray-team
Product	ixray-1.6-stcop
Versions	Default: unaffected affected from 0 to 1.3 (excl.)

Credits

TITAN Team (titancaproject@gmail.com) finder

References

https://github.com/ixray-team/ixray-1.6-stcop/pull/259

Problem Types

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor CWE