CVE-2026-24498

216.73.216.6

· Published 27/02/2026 02:16 · Modified 27/02/2026 14:06

Labels: CVE-2026-24498 2026-02-27 CVE-2026-24498 CWE-200 [email protected]

Essential information

Published: 27/02/2026 02:16
Modified: 27/02/2026 14:06
Author: —
Creator: —
CVSS: 6.0 MEDIUM (v3) 6.0 MEDIUM (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in EFM-Networks, Inc. IpTIME T5008, EFM-Networks, Inc. IpTIME AX2004M, EFM-Networks, Inc. IpTIME AX3000Q, EFM-Networks, Inc. IpTIME AX6000M allows Authentication Bypass.This issue affects ipTIME T5008: through 15.26.8; ipTIME AX2004M: through 15.26.8; ipTIME AX3000Q: through 15.26.8; ipTIME AX6000M: through 15.26.8.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
efm-networks / iptime t5008	`cpe:2.3:a:efm-networks:iptime_t5008:15.26.8:::::::*`
efm-networks / iptime ax2004m	`cpe:2.3:a:efm-networks:iptime_ax2004m:15.26.8:::::::*`
efm-networks / iptime ax3000q	`cpe:2.3:a:efm-networks:iptime_ax3000q:15.26.8:::::::*`
efm-networks / iptime ax6000m	`cpe:2.3:a:efm-networks:iptime_ax6000m:15.26.8:::::::*`