CVE-2026-34570 | ci4-cms-erp ci4ms 0.28.5.0 access control (GHSA-4vxv-4xq4-p84h)

April 2, 2026 Yanac

A vulnerability, which was classified as critical, has been found in ci4-cms-erp ci4ms 0.28.5.0. This impacts an unknown function. The manipulation leads to improper access controls.

This vulnerability is listed as CVE-2026-34570. The attack may be initiated remotely. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-34572 | ci4-cms-erp ci4ms 0.28.5.0 access control (GHSA-8fq3-c5w3-pj3q)
CVE-2026-34544 | AcademySoftwareFoundation OpenEXR up to 3.4.7 EXR File Parser exr_decoding_run integer overflow (GHSA-h762-rhv3-h25v)