CVE-2026-25085

Published February 27th, 2026

View on NVD ↗

CVSS v3

8.6

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

A vulnerability exists in Copeland XWEB Pro version 1.12.1 and prior, in which an unexpected return value from the authentication routine is later on processed as a legitimate value, resulting in an authentication bypass.

cisagov/CSAF

CISA CSAF Security Advisories

GitHub