HIGHCVE-2026-33583Published Modified CNA ENISA
CVE-2026-33583: Arqit SKA-Platform Vulnerable to Key Exposure
Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated and unencrypted HTTP GET method in the Arqit Symmetric Key Agreement Platform. This issue affects Symmetric Key Agreement Platform: before 26.03.
Metrics
- CVSS v3.1
- 8.7
- Severity
- HIGH
- Fixed in
- 26.03
- Affected Products
- 1
Fix available
26.03
Affected packages
- Arqit / Symmetric Key Agreement Platform< 26.03 (from 0)
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:NReferences