Arqit Symmetric Key Agreement Platform
3 CVEs affecting Arqit Symmetric Key Agreement Platform. Latest disclosed: 2026-05-13. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-33583 | High | 8.7 | 2026-05-13 | Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated and unencrypted HTTP… |
CVE-2026-33584 | Medium | 5.3 | 2026-05-13 | Exposed Keycloak management service in the Arqit Symmetric Key Agreement Platform enables unauthorized access to sensitive debug information such as metrics… |
CVE-2026-33585 | Low | 3.8 | 2026-05-13 | Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an authenticated tenan… |