How to fix EUVD-2026-19271?

EUVD-2026-19271

| CVE-2026-31151 CRITICAL

2026-04-06 mitre

GHSA-4wx7-2hfw-hhff

9.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Apr 06, 2026 - 15:00 vuln.today

EUVD ID Assigned

Apr 06, 2026 - 15:00 euvd

EUVD-2026-19271

CVE Published

Apr 06, 2026 - 00:00 nvd

CRITICAL 9.8

Description

An issue in the login mechanism of Kaleris YMS v7.2.2.1 allows attackers to bypass login verification to access the application 's resources.

Analysis

Authentication bypass in Kaleris Yard Management System (YMS) v7.2.2.1 enables unauthenticated remote attackers to completely circumvent login verification and gain unauthorized access to application resources with full confidentiality, integrity, and availability impact. The vulnerability has a 9.8 CVSS score with network-based attack vector requiring no privileges or user interaction. …

Remediation

Within 24 hours: Inventory all Kaleris YMS v7.2.2.1 installations and restrict network access to affected systems using firewall rules or air-gapping where operationally feasible. Within 7 days: Contact Kaleris support to confirm patch availability timeline and evaluate upgrade paths to patched versions; implement compensating controls such as reverse proxy authentication and activity logging. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +49

POC: 0

EUVD-2026-19271 vulnerability details – vuln.today

Back

EUVD-2026-19271

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

EUVD-2026-19271

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code