Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
CVE-2026-9642: DIAView Project Database Access Bypass
CVE-2026-9642
Summary
An attacker can access your databases without a password. This is a risk because it could allow unauthorized access to sensitive information. Update to the latest version of DIAView to fix this issue.
Original title
There is a mitigation bypass / (incomplete fix) for CVE-2025-62582 (Unauthenticated Remote Database Access)
An unauthenticated remote attacker can access configured databases in a DIAView project.
Original description
There is a mitigation bypass / (incomplete fix) for CVE-2025-62582 (Unauthenticated Remote Database Access)
An unauthenticated remote attacker can access configured databases in a DIAView project.
An unauthenticated remote attacker can access configured databases in a DIAView project.
nvd CVSS3.1
9.8
Vulnerability type
CWE-321
Use of Hard-coded Cryptographic Key
Published: 26 May 2026 · Updated: 28 May 2026 · First seen: 26 May 2026