CVE-2026-1597
Unknown Unknown - Not Provided
Improper Authorization in Bdtask SalesERP Administrative Endpoint

Publication date: 2026-01-29

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the component Administrative Endpoint. Such manipulation of the argument ci_session leads to improper authorization. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-29
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2026-01-29
EPSS Evaluated
2026-06-14
NVD
CVE-2026-1597
EUVD
EUVD-2026-4955
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
bdtask saleserp 2026-01-16
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-285 The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
CWE-266 A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided resources do not explicitly discuss the impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA. However, given that the vulnerability allows unauthorized access to administrative functions and sensitive ERP data, it likely poses a risk to data confidentiality and integrity, which are critical aspects of compliance with such regulations. Unauthorized access and potential data manipulation could lead to violations of data protection requirements. No direct statements about compliance impact are available in the provided resources. [1, 2, 3]

Executive Summary

CVE-2026-1597 is a critical Broken Access Control vulnerability in Bdtask SalesERP. The issue occurs because the application fails to verify user roles on the server side when processing the ci_session cookie. This allows any authenticated user to bypass authorization checks and gain unauthorized access to administrative endpoints such as /add_role, /bank_list, /stock, and /purchase_list. As a result, normal users can escalate their privileges to admin level, enabling them to view, edit, delete sensitive data, and manage user roles without proper authorization. [1, 3]

Impact Analysis

This vulnerability can lead to a full compromise of the ERP system by allowing unauthorized users to escalate privileges to admin level. Attackers can access, modify, or delete sensitive business data, manipulate user roles, and control all administrative functions. This impacts the confidentiality, integrity, and availability of the system, potentially causing severe operational and financial damage. [1, 2, 3]

Detection Guidance

This vulnerability can be detected by testing access to administrative endpoints such as /add_role, /bank_list, /stock, and /purchase_list using a normal authenticated user session with the ci_session cookie. If these admin endpoints are accessible without proper role verification, the system is vulnerable. Commands to test this could include using curl or similar HTTP clients to send requests with a normal user's ci_session cookie to these endpoints and checking if access is granted. For example: curl -b "ci_session=<user_session_cookie>" https://<target>/add_role -v. Lack of server-side role validation indicates the vulnerability. [1, 3]

Mitigation Strategies

Immediate mitigation steps include implementing server-side role verification on all administrative endpoints to ensure that only users with appropriate roles can access them. Deploy centralized Role-Based Access Control (RBAC) middleware to enforce authorization checks. Bind the ci_session cookie to the user's role and permission state to prevent unauthorized access. Deny access to admin routes for users without admin privileges. Conduct a comprehensive authorization audit of the application. Since no vendor patch or countermeasure is currently available, consider replacing the affected product if possible. [1, 2, 3]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-1597. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart