Skip to main content

Sayax OSOS CVE-2026-1365

| EUVDEUVD-2026-42551 MEDIUM
Insertion of Sensitive Information Into Sent Data (CWE-201)
2026-07-09 TR-CERT GHSA-3mfh-f79j-gpv8
6.5
CVSS 3.1 · Vendor: TR-CERT
Share

Severity by source

Vendor (TR-CERT) PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
vuln.today AI
6.5 MEDIUM

Network-accessible via authenticated low-privilege account; sensitive data exposure in transit yields high confidentiality impact with no integrity or availability effects.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (TR-CERT).

CVSS VectorVendor: TR-CERT

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jul 09, 2026 - 10:09 vuln.today

DescriptionCVE.org

Insertion of sensitive information into sent data vulnerability in Sayax Energy Technologies Inc. OSOS allows Authentication Bypass.

This issue affects OSOS: through 09072026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Sensitive authentication data is inserted into network-transmitted responses in OSOS, the energy management platform by Sayax Energy Technologies Inc., enabling authenticated low-privilege users to extract credentials or session tokens and bypass authentication controls. All versions through build 09072026 are affected with no vendor patch available - TR-CERT disclosed this vulnerability but received no response from the vendor. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain low-privilege OSOS credentials
Delivery
Send authenticated requests to OSOS platform
Exploit
Intercept or read sensitive data in transmitted responses
Execution
Extract authentication tokens or credentials of higher-privileged accounts
Persist
Authenticate as privileged user
Impact
Access restricted OSOS energy management functions

Vulnerability AssessmentAI

Exploitation Exploitation requires possession of a valid low-privilege OSOS account, as confirmed by PR:L in the CVSS vector - unauthenticated remote attackers cannot trigger this vulnerability directly. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N) scores 6.5 (Medium), reflecting network-reachable exploitation with low complexity and no user interaction, but constrained by the requirement for a low-privilege authenticated account (PR:L). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with a valid low-privilege OSOS account makes authenticated requests to the platform and observes server responses or inter-service traffic, recovering embedded session tokens or credentials belonging to higher-privileged accounts. Using those extracted credentials, the attacker authenticates as an administrator or privileged operator, gaining access to restricted energy management functions or configuration interfaces beyond their authorized scope.
Remediation No vendor-released patch has been identified at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-1365 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy