This page aggregates publicly disclosed CVE and security risk information related to avantra, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-8673 | Unprotected transport of credentials vulnerability in syslink software AG Avantra on Linux, Windows allows Sniffing Attacks. This issue affects Avantra: before 25.3.0. | [email protected] | 5.9 | 0.03% | 2026-05-22 | 2026-06-02 |
| CVE-2026-8672 | Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0. | [email protected] | 5.1 | 0.01% | 2026-05-22 | 2026-06-02 |
| CVE-2026-8671 | Insertion of sensitive information into log file vulnerability in syslink software AG Avantra on Linux, Windows allows Resource Leak Exposure. This issue affects Avantra: before 25.3.0. | [email protected] | 7.5 | 0.02% | 2026-05-22 | 2026-06-02 |
| CVE-2026-8670 | Insufficient session expiration vulnerability in syslink software AG Avantra on Linux, Windows allows Reusing Session IDs (aka Session Replay). This issue affects Avantra: before 25.3.1. | [email protected] | 9.6 | 0.04% | 2026-05-22 | 2026-06-02 |