CVE-2026-8672 PUBLISHED

Default credentials for internal DB

Assigner: NCSC.ch
Reserved: 15.05.2026 Published: 22.05.2026 Updated: 22.05.2026

Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords.

This issue affects Avantra: before 25.3.0.

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
CVSS Score: 5.1

CVSS 3.1

Vendor	syslink software AG
Product	Avantra
Versions	Default: unaffected affected from 0 to 25.3.0 (excl.)