EUVD-2026-30115

ID: EUVD-2026-30115

Severity: low

CVSS v4: Not provided

CVSS v3: 3.8 (CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L)

CWE: None listed

Source: ENISA

Description

Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an authenticated tenant user via an unexpired browser session. This issue affects Symmetric Key Agreement Platform: before 26.03.

Timestamps

Normalized: 2026-05-13T20:15:53Z UTC
Last updated: 2026-05-13T20:15:53Z UTC

References

No references provided.

VulnAI

EUVD-2026-30115

Description

Timestamps

References