A vulnerability marked as critical has been reported in Radiflow iSAP Smart Collector 3.07-1 . Impacted is an unknown function of the component API . This manipulation causes hard-coded credentials. This vulnerability is handled as CVE-2026-22312 . The attack can be initiated remotely. There is not any exploit available.