VYPR
Critical severity9.6NVD Advisory· Published May 22, 2026· Updated Jun 2, 2026

CVE-2026-8670

CVE-2026-8670

Description

Insufficient session expiration vulnerability in syslink software AG Avantra on Linux, Windows allows Reusing Session IDs (aka Session Replay).

This issue affects Avantra: before 25.3.1.

Affected products

2
  • Avantra/Avantra2 versions
    cpe:2.3:a:avantra:avantra:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:avantra:avantra:*:*:*:*:*:*:*:*range: <25.3.1
    • (no CPE)range: <25.3.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.