Industrial Application Software IAS Canias ERP Login RMI doAction response...

6.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high degree of complexity is needed for the attack. The exploitability is regarded as difficult. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2026-8242

Source VulDB

Published May 10, 2026 at 08:15

Affected Product

Vendor Industrial Application Software IAS

Product Canias ERP

Version 8.03

Affected Versions Industrial Application Software IAS Canias ERP 8.03

CWE Classification

CWE-204 CWE-203

References

{
    "lastseen": "",
    "description": "A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high degree of complexity is needed for the attack. The exploitability is regarded as difficult. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-05-10T08:15:08.901Z",
    "modified": "2026-05-10T08:15:08.901Z",
    "type": "cve",
    "title": "Industrial Application Software IAS Canias ERP Login RMI doAction response discrepancy",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/362458\nhttps://vuldb.com/vuln/362458/cti\nhttps://vuldb.com/submit/808295\nhttps://gist.github.com/0xb1lal/85422a63c10a001c75a22365457de624",
    "id": "CVE-2026-8242",
    "bulletinFamily": "",
    "cwe": [
        "CWE-204",
        "CWE-203"
    ],
    "cvelist": null,
    "sourceData": "Industrial Application Software IAS Canias ERP 8.03",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Canias ERP",
    "version": "8.03",
    "vendor": "Industrial Application Software IAS",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Industrial Application Software IAS Canias ERP Login RMI doAction response discrepancy_CVE-2026-8242