Primary

Context

Galaxy Software Services Vitals ESP Missing Authentication Vulnerability Allowing Information Disclosure

Vulnerability

A missing authentication vulnerability has been identified in Vitals ESP developed by Galaxy Software Services, affecting versions through 6.3. This vulnerability allows unauthenticated remote attackers to execute certain functions that retrieve sensitive information.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information.

Remediation

Contact the vendor to obtain the patch.

Added: Mar 24, 2026, 5:26 AM

Updated: Mar 24, 2026, 5:26 AM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

7.0

remediation

0.0

relevance

4.6

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

7.0

remediation

0.0

relevance

4.6

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Galaxy Software Services Vitals ESP Missing Authentication Vulnerability Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Galaxy Software Services Vitals ESP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating