CVE-2026-0848 | defend.network

CVSSawaiting NVD

ExploitationNo exploitation reported

Triage statusUnder Review

ActionSchedule for next cycle

Affected product

OpenCode Systems OC Messaging and USSD Gateway

Remediation Steps

Review OpenCode Systems gateway access controls and multi-tenancy implementation
Apply security patch restricting authenticated user access to authorized tenant scopes only
Audit recent logs for unauthorized cross-tenant SMS message access
Implement role-based access control (RBAC) enforcement in gateway
Test tenant isolation measures in staging environment

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-085-02.json
https://www.opencode.systems/support
https://nvd.nist.gov/vuln/detail/CVE-2026-0848

Coverage on defend.network

Vulnerability Priority Report – Week 5 of March 2026 (March 30 – April 5)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

Affected product

Remediation Steps

References

Coverage on defend.network

Get Critical CVE Alerts