External risk intelligence

Altium 365 Search Index Unauthorized Access Advisory

CVE advisorySeverity: CRITICAL (CVSS 10.0)

CVE-2026-9152

A vulnerability in Altium 365's SearchService allows unauthenticated network access to search index operations. This could expose sensitive workspace information and compromise search result integrity. The risk to affected organizations includes data disclosure and manipulation of search results, impacting business ope

5Halo Surface Signal

Missing Authentication

External exposure likelihood

Halo Surface Signal score for CVE-2026-9152

Altium 365 is a cloud-based SaaS platform. The affected SearchService SOAP endpoint is a component of this cloud architecture, which is inherently designed to be reachable via the public internet to serve users. As a cloud-hosted service accessible over the web, the attack surface is public-facing by design.

PCI scan relevance

PCI Relevance for CVE-2026-9152

Yes

CVE-2026-9152 — Halo PCI Relevance: Yes. Under typical PCI ASV external scan criteria, this issue may be flagged for scan prioritization.

This vulnerability allows unauthenticated attackers to access, modify, or delete search index data in Altium 365. This could impact PCI compliance by exposing sensitive information and compromising data integrity.

Scan-prioritization guidance only—not a PCI DSS certification or ASV attestation.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Horizon Alert

Summary of the vulnerability and why it matters

The Altium 365 SearchService has a vulnerability where certain search index operations do not require authentication. An attacker with network access could interact with a target workspace's search index without verifying their identity. This could lead to unauthorized access to sensitive information and compromise the integrity of search results.

  • Vulnerable component: Altium 365 SearchService
  • Core weakness: Missing authentication on search endpoint
  • Main business impact: Data disclosure and search result compromise

Attack Path

How an attacker could exploit the issue

The Altium 365 SearchService contains a legacy SOAP endpoint that lacks authentication for search index operations. An attacker on the network could exploit this to access a targeted workspace's search index without needing credentials. This interaction can bypass tenant boundaries, allowing the attacker to read indexed data and manipulate search index entries.

  • Exposed network endpoint
  • Attacker references workspace ID
  • Manipulate search index

Live Threat

Current exploitation, exposure, and threat context

This vulnerability could allow an unauthenticated attacker to access or manipulate search index data within a targeted Altium 365 workspace. Exploitation could lead to the disclosure of sensitive information or compromise the integrity and availability of search results. The impact is limited to the search index, not the underlying vault data, but could still affect business operations.

  • Attacker skill level: Low
  • Access required: Network access
  • Business risk: High, requires immediate attention

Priority actions

Operational Fix

Recommended remediation, mitigation, and detection steps

The organization should address a vulnerability impacting the Altium 365 SearchService. This issue allows unauthenticated network attackers to access and manipulate search index data within a workspace, potentially exposing sensitive information and compromising search result integrity. While the underlying vault data is not directly affected, the integrity of search results can be compromised. Altium 365 cloud deployments are impacted, but on-premise Altium Enterprise Server is not.

  • Identify exposed Altium 365 cloud assets.
  • Reduce exposure to the search index.
  • Apply vendor fixes and validate.
  • Monitor search index activity.

Frequently asked questions

What is Altium 365 and its SearchService component?

Altium 365 is a cloud-based platform for managing electronic design data. Its SearchService component is used to index and retrieve information such as component data, project details, and user metadata within a user's workspace.

What type of vulnerability affects Altium 365's SearchService?

The vulnerability is classified as a missing authentication vulnerability (CWE-306). A legacy SOAP endpoint within the SearchService allows certain search index operations without requiring any form of authentication or identity verification.

How can an attacker exploit this vulnerability in Altium 365?

An unauthenticated network attacker who can reference a target workspace's identifier can interact with that workspace's search index. This allows them to read indexed contents, inject, modify, or delete search index entries, crossing tenant boundaries.

What is the practical impact of this Altium 365 vulnerability?

Exploitation can lead to the disclosure of sensitive workspace information like component data and project names. It can also compromise the integrity and availability of search results by manipulating index entries, affecting business operations. [cite: haloSurfaceSignal]

What are the recommended response steps for this Altium 365 issue?

Organizations should identify exposed Altium 365 cloud assets, reduce exposure to the search index, and apply vendor-provided fixes once available. Monitoring search index activity is also recommended to detect any potential misuse.

References

Sources and related resources

Primary sources: NVD, CVE.org.

NVDPublished