What is the CVSS score of CVE-2026-40434?

CVE-2026-40434 has a CVSS 3.1 base score of 8.1 (High). CVSS vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H. EPSS exploitation probability: 0.0%.

CVE-2026-40434

EUVD-2026-23533 HIGH

Improper Verification of Source of a Communication Channel (CWE-940)

2026-04-17 icscert

GHSA-qg37-cwrh-945r

Code Injection

8.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Lifecycle Timeline

Re-analysis Queued

Apr 20, 2026 - 19:07 vuln.today

cvss_changed

Analysis Generated

Apr 17, 2026 - 20:37 vuln.today

EUVD ID Assigned

Apr 17, 2026 - 20:15 euvd

EUVD-2026-23533

Analysis Generated

Apr 17, 2026 - 20:15 vuln.today

CVE Published

Apr 17, 2026 - 19:49 nvd

HIGH 8.1

DescriptionNVD

Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic.

AnalysisAI

TCP packet injection vulnerability in Anviz CrossChex Standard allows adjacent network attackers to manipulate or disrupt client/server communications without authentication. The application fails to verify the source of TCP packets, enabling attackers on the same network segment to inject malicious traffic and alter application behavior or cause denial of service. …

RemediationAI

Within 24 hours: Identify all instances of Anviz CrossChex Standard in your environment and document network segment placement. Within 7 days: Implement network segmentation to isolate affected systems from untrusted internal networks; enable TCP packet source validation and anomaly detection on network switches serving CrossChex deployments. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-40434 vulnerability details – vuln.today

Back

CVE-2026-40434

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code