Vulnerability in Suprema Biostar 2 (Server)
CVE-2026-9509
An unhandled exception in Suprema BioStar 2 (Server), versions 2.9.8, 2.9.10, and 2.9.11, that allows an unauthenticated remote attacker to cause a denial of service (DoS) by sending HTTP POST requests to the ‘/api/migration’ endpoint. Thi…
EPSS: 0.001 (33.3th percentile) — read the EPSS interpretation.
Affected products
- Suprema Biostar 2 (Server) — versions v2.9.11, v2.9.10, v2.9.8
Weakness classification (CWE)
References
- cve-coordination@incibe.es (patch)