Primary

Context

Galaxy Software Services Vitals ESP Incorrect Authorization Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability allowing incorrect authorization has been identified in Vitals ESP developed by Galaxy Software Services. This issue enables authenticated remote attackers to execute certain administrative functions, thereby escalating privileges. The vulnerability affects Vitals ESP versions through 6.3.

Impact

Exploitation of this vulnerability allows authenticated remote attackers to gain elevated privileges by performing administrative functions that they are not authorized to.

Remediation

Users are advised to contact the vendor for a patch.

Added: Mar 24, 2026, 5:19 AM

Updated: Mar 24, 2026, 5:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

4.9

remediation

6.0

relevance

4.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

4.9

remediation

6.0

relevance

4.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Galaxy Software Services Vitals ESP Incorrect Authorization Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Galaxy Software Services Vitals ESP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating