CVE-2026-35087
Deferred Deferred - Pending Action
Authentication Bypass in Slican Telephone Exchanges

Publication date: 2026-05-27

Last updated on: 2026-05-27

Assigner: CERT.PL

Description
Slican telephone exchanges allow administrative protocol authentication bypass. An attacker can bypass the need to enter login credentials by executing the appropriate command. This issue was fixed in versions below: - NCP: version 1.24.0250 - IPx series: version 6.61.0040 - CCT-1668: version 6.56.0430 - MAC-6400: version 6.56.0430 - CXS-0424: version 6.30.0510 The issue STILL EXISTS in End-Of-Life telephone exchanges in versions 4.xx and below: - CCT-1668 (CCT1CPU) - MAC-6400 -Β CXS-0424 These products were discontinued in 2011 and 2012 and and will not receive updates. These products require a hardware update in order to receive a software update. The vendor recommends that users of these devices contact the their service department directly to determine the options for upgrading.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-27
Last Modified
2026-05-27
Generated
2026-06-16
AI Q&A
2026-05-27
EPSS Evaluated
2026-06-15
NVD
CVE-2026-35087
EUVD
EUVD-2026-32276
Affected Vendors & Products
Showing 12 associated CPEs
Vendor Product Version / Range
slican ncp 1.24.0250
slican ipx_series 6.61.0040
slican cct-1668 6.56.0430
slican mac-6400 6.56.0430
slican cxs-0424 6.30.0510
slican cct-1668 to 4.0 (exc)
slican mac-6400 to 4.0 (exc)
slican cxs-0424 to 4.0 (exc)
slican ipx 6.61.0040
slican cct-1668 From 4.0 (exc)
slican mac-6400 From 4.0 (exc)
slican cxs-0424 From 4.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-288 The product requires authentication, but the product has an alternate path or channel that does not require authentication.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability affects Slican telephone exchanges and allows an attacker to bypass the administrative protocol authentication.

Specifically, an attacker can skip the need to enter login credentials by executing a certain command, effectively gaining unauthorized access.

The issue exists in various versions of Slican software products, including IPx, CCT-1668, MAC-6400, CXS-0424, and NCP, particularly in versions below the fixed releases.

Impact Analysis

This vulnerability can have serious impacts as it allows unauthorized users to gain administrative access to Slican telephone exchanges without authentication.

Such unauthorized access could lead to manipulation or disruption of telephone exchange operations, potentially affecting communication systems.

Since the vulnerability allows bypassing login credentials, it increases the risk of malicious activities such as interception, modification, or denial of service.

Mitigation Strategies

To mitigate this vulnerability, you should upgrade the Slican telephone exchange software to the fixed versions or later:

  • NCP: version 1.24.0250 or newer
  • IPx series: version 6.61.0040 or newer
  • CCT-1668: version 6.56.0430 or newer
  • MAC-6400: version 6.56.0430 or newer
  • CXS-0424: version 6.30.0510 or newer

For End-Of-Life devices (CCT-1668, MAC-6400, CXS-0424) running versions 4.xx and below, which are no longer supported and cannot receive software updates without hardware upgrades, the vendor recommends contacting the service department directly to explore hardware upgrade options.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-35087. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart