CVE-2026-0809

Vulnerability Description

Use of a custom token encoding algorithm in Streamsoft Prestiż software allows the value of the KSeF (Krajowy System e-Faktur) token to be guessed after analyzing how tokens with know values are encoded. This issue was fixed in version 20.0.380.92.

Related Weaknesses (CWE)

CWE-261

References

https://cert.pl/posts/2026/03/CVE-2026-0809
https://www.streamsoft.pl/streamsoft-prestiz/

FAQ

What is CVE-2026-0809?

CVE-2026-0809 is a documented vulnerability. Use of a custom token encoding algorithm in Streamsoft Prestiż software allows the value of the KSeF (Krajowy System e-Faktur) token to be guessed after analyzing how tokens with know values are encod...

How severe is CVE-2026-0809?

CVSS scoring is not yet available for CVE-2026-0809. Check NVD for updates.

Is there a patch for CVE-2026-0809?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.