CVE-2026-0873
Privilege Escalation in Ercom Cryptobox Admin Console
Publication date: 2026-02-04
Last updated on: 2026-02-04
Assigner: Thales Group
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ercom | cryptobox | 4.40 |
| ercom | cryptobox-cfsb | 4.38.295 |
| ercom | helm_chart | 4.40.166 |
| ercom | mobile_apps_for_android | 4.40.153 |
| ercom | mobile_apps_for_ios | 4.40.152 |
| ercom | desktop_sync_clients | 4.40.152 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
| CWE-1220 | The product implements access controls via a policy or other feature with the intention to disable or restrict accesses (reads and/or writes) to assets in a system from untrusted agents. However, implemented access controls lack required granularity, which renders the control policy too broad because it allows accesses from unauthorized agents to the security-sensitive assets. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Ercom Cryptobox administration console on a platform where administrator segregation based on entities is used. It allows an authenticated entity administrator, who already has some level of access, to elevate their account privileges to that of a global administrator.
How can this vulnerability impact me? :
The vulnerability can impact you by allowing an entity administrator to gain unauthorized global administrator privileges. This elevation of privilege could lead to broader access and control over the Cryptobox platform than intended, potentially compromising the security and integrity of the system and its data.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
To mitigate the vulnerability in the Ercom Cryptobox administration console that allows an authenticated entity administrator to elevate privileges to global administrator, it is recommended to update to the latest Cryptobox version 4.40 or later.
The Cryptobox 4.40 release includes multiple security improvements and updates to underlying components such as mbedTLS, Alpine Linux, and Django, which may address this and other vulnerabilities.
Additionally, ensure that administrator segregation policies are properly enforced and review administrator accounts for any unauthorized privilege escalations.