Improper URL Handler Processing in D.Launcher 2 enables NTLM Credential...

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Description

D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF (Server Side Request Forgery) attacks. User interaction is required as potential victim needs to open a specially crafted URL.

Basic Information

ID CVE-2026-8993

Source SK-CERT

Published Jun 2, 2026 at 11:13

Affected Product

Vendor Ditec a.s.

Product D.Launcher 2

Affected Versions Ditec a.s. D.Launcher 2 0

CWE Classification

CWE-74 CWE-200 CWE-1395

References

{
    "lastseen": "",
    "description": "D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF (Server Side Request Forgery) attacks. User interaction is required as potential victim needs to open a specially crafted URL.",
    "published": "2026-06-02T11:13:40.342Z",
    "modified": "2026-06-02T11:13:40.342Z",
    "type": "cve",
    "title": "Improper URL Handler Processing in D.Launcher 2 enables NTLM Credential Disclosure and SSRF attacks",
    "source": "SK-CERT",
    "references": "https://www.slovensko.sk/sk/oznamy/detail/_zranitelnost-aplikacie-d-launc\nhttps://ditec.sk/static/kep/apps/release-notes/en",
    "id": "CVE-2026-8993",
    "bulletinFamily": "",
    "cwe": [
        "CWE-74",
        "CWE-200",
        "CWE-1395"
    ],
    "cvelist": null,
    "sourceData": "Ditec a.s. D.Launcher 2 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "D.Launcher 2",
    "version": "0",
    "vendor": "Ditec a.s.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Improper URL Handler Processing in D.Launcher 2 enables NTLM Credential Disclosure and SSRF attacks_CVE-2026-8993