CVE-2026-4640

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published Mar 24, 2026

Vendor unknown

Description

Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information.

References

https://www.twcert.org.tw/en/cp-139-10795-25784-2.html
https://www.twcert.org.tw/tw/cp-132-10794-704a2-1.html