Description
D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF (Server Side Request Forgery) attacks. User interaction is required as potential victim needs to open a specially crafted URL.
Published: 2026-06-02
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability allows a specially crafted URL to be processed by D.Launcher 2, which holds multiple custom URL handlers. When a user opens such a URL, the application could initiate a full NTLM authentication or establish an SMB connection to an attacker’s infrastructure, thereby leaking NTLM credentials. Additionally, the same misprocessing can be used to perform SSRF attacks that reach internal resources. The description states explicitly that user interaction is required, so the impact materializes only when a victim opens a malicious link.

Affected Systems

The affected product is D.Launcher 2 from Ditec. Specific version information is not provided in the report, so all releases of the application are potentially vulnerable until a patch is available.

Risk and Exploitability

The CVSS score of 6.5 reflects a medium severity vulnerability with potential for moderate impact. The EPSS score is not available, suggesting current data is insufficient to gauge exploitation likelihood. The vulnerability is not listed in the CISA KEV catalog, indicating no known widespread exploitation as of now. Attackers would likely need to host a malicious SMB service or set up a server capable of receiving NTLM traffic; this inference is based on the description of initiating full NTLM authentication or SMB connection. Because user interaction is required, the risk is mitigated compared to purely remote exploits, but credential disclosure and SSRF could still be highly damaging if abused. The recommended monitoring should focus on SMB traffic originating from unknown or external hosts and on any user-initiated URL handling within the application.

Generated by OpenCVE AI on June 2, 2026 at 12:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest vendor patch or upgrade D.Launcher 2 to a version that fixes URL handler processing.
  • Remove or disable any custom URL handlers that are not required for legitimate operation.
  • Configure network defenses to block inbound SMB traffic to the client system or restrict SMB exposure to trusted internal networks.
  • Monitor for abnormal SMB authentication attempts or SSRF activity involving the application.

Generated by OpenCVE AI on June 2, 2026 at 12:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Ditec
Ditec d.launcher 2
Vendors & Products Ditec
Ditec d.launcher 2

Tue, 02 Jun 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 02 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
Description D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF (Server Side Request Forgery) attacks. User interaction is required as potential victim needs to open a specially crafted URL.
Title Improper URL Handler Processing in D.Launcher 2 enables NTLM Credential Disclosure and SSRF attacks
Weaknesses CWE-1395
CWE-200
CWE-74
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N'}

Subscriptions

Ditec D.launcher 2
cve-icon MITRE

Status: PUBLISHED

Assigner: SK-CERT

Published:

Updated: 2026-06-02T14:43:00.775Z

Reserved: 2026-05-19T13:26:18.762Z

Link: CVE-2026-8993

cve-icon Vulnrichment

Updated: 2026-06-02T14:42:57.185Z

cve-icon NVD

Status : Deferred

Published: 2026-06-02T12:16:18.647

Modified: 2026-06-02T14:50:37.260

Link: CVE-2026-8993

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T20:51:24Z

Weaknesses
  • CWE-1395

    Dependency on Vulnerable Third-Party Component

  • CWE-200

    Exposure of Sensitive Information to an Unauthorized Actor

  • CWE-74

    Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')