Filtered by vendor Arqit
Subscriptions
Filtered by product Symmetric Key Agreement Platform
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-33583 | 1 Arqit | 1 Symmetric Key Agreement Platform | 2026-05-14 | 8.7 High |
| Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated and unencrypted HTTP GET method in the Arqit Symmetric Key Agreement Platform. This issue affects Symmetric Key Agreement Platform: before 26.03. | ||||
| CVE-2026-33584 | 1 Arqit | 1 Symmetric Key Agreement Platform | 2026-05-14 | 5.3 Medium |
| Exposed Keycloak management service in the Arqit Symmetric Key Agreement Platform enables unauthorized access to sensitive debug information such as metrics and health data. This issue affects Symmetric Key Agreement Platform: before 26.03. | ||||
| CVE-2026-33585 | 1 Arqit | 1 Symmetric Key Agreement Platform | 2026-05-14 | 3.8 Low |
| Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an authenticated tenant user via an unexpired browser session. This issue affects Symmetric Key Agreement Platform: before 26.03. | ||||
Page 1 of 1.