CNNVD-202602-2199 Information

CNNVD ID

CNNVD-202602-2199

Related CVE

CVE-2026-26334

• CNNVD Published: 2026-02-13

Description (Chinese)

Calero VeraSMART是美国Calero公司的一个电话计费软件。 Calero VeraSMART 2026 R1之前版本存在信任管理问题漏洞，该漏洞源于Veramark.Framework.dll中包含硬编码的静态AES加密密钥，可能导致本地攻击者解密存储的凭据，进而实现本地权限提升。

Description (English)

Calero VeraSMART is a telephone billing software for the United States company Calero. The previous version of Calero VeraSMART 2026 R1 had a confidence management gap, which originated from the static AES encryption key with hard-coded Veramark.Framework.dll, which could lead to local assailants decrypting evidence of storage, thereby enhancing local privileges.

Vulnerability Type

信任管理问题

Affected Vendor

Calero

Published

2026-02-13

Last Modified

2026-02-24

References

https://www.calero.com/ https://www.vulncheck.com/advisories/calero-verasmart-2026-r1-hardcoded-static-aes-keys-allow-decryption-of-service-credentials