CVE-2026-10597 - CVE Alert System

Basic Information

Severity	MEDIUM
Base Score	6.9
CNA	twcert
Published Date	2026-06-03 22:19:51 UTC
Last Modified	2026-06-03 22:19:51 UTC
CVE.org Link	https://www.cve.org/CVERecord?id=CVE-2026-10597
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-10597

Description

OMICARD EDM developed by ITPison has a Insecure Direct Object Reference vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to obtain user's email address.

Affected Products

Vendor	Product
itpison	omicard edm

References

https://www.twcert.org.tw/tw/cp-132-10947-027a7-1.html
https://www.twcert.org.tw/en/cp-139-10948-78864-2.html

Back to Lookup View on CVE.org