CVE-2026-34408

216.73.217.22

· Published 05/05/2026 14:16 · Modified 05/05/2026 20:24

Labels: CVE-2026-34408 2026-05-05 CVE-2026-34408 [email protected]

Essential information

Published: 05/05/2026 14:16
Modified: 05/05/2026 20:24
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

An issue was discovered in Gambio 4.9.2.0 (patched in 2024-02 v1.0.0 for GX4 v4.0.0.0 to v4.9.2.0). The password reset function can be bypassed to set arbitrary passwords for arbitrary accounts if the ID is known.

NVD status

Status: Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
gambio / gambio	`cpe:2.3:a:gambio:gambio:4.9.2.0:::::::*`

CVE-2026-34408

Essential information

Description

NVD status

Affected products (CPE)

References