CVE-2026-33583— Arqit SKA-Platform Vulnerable to Key Exposure

CVSS 8.7 · High EPSS 0.03% · P9 Updated May 15, 2026

Possible ATT&CK Techniques 1AI

Affected Version Matrix 1

Vendor	Product	Version Range	Status
Arqit	Symmetric Key Agreement Platform	`< 26.03`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-33583

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Arqit SKA-Platform Vulnerable to Key Exposure

Source: NVD (National Vulnerability Database)

Vulnerability Description

Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated and unencrypted HTTP GET method in the Arqit Symmetric Key Agreement Platform. This issue affects Symmetric Key Agreement Platform: before 26.03.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

暴露危险的方法或函数

Source: NVD (National Vulnerability Database)

Vulnerability Title

Arqit Symmetric Key Agreement Platform 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Arqit Symmetric Key Agreement Platform是Arqit公司的一个量子安全密钥协商平台。 Arqit Symmetric Key Agreement Platform 26.03之前版本存在安全漏洞，该漏洞源于通过未经验证和未加密的HTTP GET方法暴露QKEY和内部系统密钥，可能导致敏感信息泄露。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Arqit	Symmetric Key Agreement Platform	0 ~ 26.03	-

II. Public POCs for CVE-2026-33583

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-33583

请登录查看更多情报信息。

https://www.cvcn.gov.it/cvcn/cve/CVE-2026-33583third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-33583

Same Patch Batch · Arqit · 2026-05-13 · 3 CVEs total

CVE-2026-33584	5.3 MEDIUM	Arqit SKA-Platform Enables Access to Debug Information
CVE-2026-33585	3.8 LOW	Arqit SKA-Platform Improper Handling of Parameters Vulnerability

IV. Related Vulnerabilities

Same product: Symmetric Key Agreement Platform

Same vendor: Arqit

Same weakness: CWE-749

V. Comments for CVE-2026-33583

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-33583— Arqit SKA-Platform Vulnerable to Key Exposure

Possible ATT&CK Techniques 1AI

Affected Version Matrix 1

I. Basic Information for CVE-2026-33583

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-33583

III. Intelligence Information for CVE-2026-33583

Same Patch Batch · Arqit · 2026-05-13 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-33583

Leave a comment