CVE-2026-41468HIGH 8.7EPSS p30.5%

CVE-2026-41468CVE-2026-41468

Description

Beghelli Sicuro24 SicuroWeb embeds AngularJS 1.5.2, an end-of-life component containing known sandbox escape primitives. When combined with template injection present in the same application, these primitives allow attackers to escape the AngularJS sandbox and achieve arbitrary JavaScript execution in operator browser sessions, enabling session hijacking, DOM manipulation, and persistent browser compromise. Network-adjacent attackers can deliver the complete injection and escape chain via MITM in plaintext HTTP deployments without active user interaction.

Scoring

CVSS 3.18.7 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L
EPSS0.39% probability of exploitation · percentile 30.5% · 2026-06-18T12:00:27Z
Published2026-04-22
Last modified2026-04-22

Underlying weaknesses· 1

CWE-1104

References

  1. https://github.com/kmkz/Exploits/blob/master/2026/CVE-2026-22191-POC.py
  2. https://github.com/kmkz/Exploits/blob/master/2026/CVE-2026-22191-SicuroWeb-ATI-chain.txt
  3. https://www.beghelli.it
  4. https://www.boffsec-services.com/posts/sicuroweb-cve-2026-22191/
  5. https://www.vulncheck.com/advisories/beghelli-sicuro24-sicuroweb-angularjs-sandbox-escape-via-template-injection

1

TypeTargetConfidenceTier
WeaknessUse of Unmaintained Third Party Componentscwe-11040%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-44643
CVE
CVE-2026-10974
CVE
CVE-2026-9914
CVE
CVE-2026-9904
CVE
CVE-2026-7900
CVE
CVE-2026-11066
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.