CRITICALCVE-2026-1453Published Modified CNA icscert
CVE-2026-1453: Missing Authentication for Critical Function in KiloView Encoder Series
A missing authentication for critical function vulnerability in KiloView Encoder Series could allow an unauthenticated attacker to create or delete administrator accounts. This vulnerability can grant the attacker full administrative control over the product.
Metrics
- CVSS v4.0
- 9.3
- Severity
- CRITICAL
- Fixed in
- —
- Affected Products
- 10
Affected packages
- KiloView / Encoder Series E1 hardware Version 1.44.7.2516
- KiloView / Encoder Series E1 hardware Version 1.6.204.7.2511 · 4.8.2523 · 4.8.2611 · 4.6.2400 · 4.7.2512 · 4.8.2561
- KiloView / Encoder Series E1-s hardware Version 1.44.7.2516 · 4.8.2519 · 4.8.2525 · 4.8.2611 · 4.8.2561 · 4.8.2554
- KiloView / Encoder Series E2 hardware Version 1.7.204.8.2611 · 4.8.2561
- KiloView / Encoder Series E2 hardware Version 1.8.204.8.2523 · 4.8.2611 · 4.8.2554
- KiloView / Encoder Series G1 hardware Version 1.6.204.8.2561
- KiloView / Encoder Series P1 hardware Version 1.3.204.8.2633 · 4.8.2608
- KiloView / Encoder Series P2 hardware Version 1.8.204.8.2633
- KiloView / Encoder Series RE1 hardware Version 2.0.004.7.2513
- KiloView / Encoder Series RE1 hardware Version 3.0.004.8.2519 · 4.8.2561 · 4.8.2611 · 4.8.2525
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NReferences