216.73.216.133

CVE-2026-4795

· Published 26/05/2026 02:16 · Modified 26/05/2026 19:45

Labels: CVE-2026-4795 2026-05-26CVE-2026-4795CWE-862[email protected]

Essential information

Published
26/05/2026 02:16
Modified
26/05/2026 19:45
Author
Creator
CVSS
6.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

A missing authorization vulnerability in Zyxel GS1200-5v3 firmware versions through 1.00(ACPS.2)C0, GS1200-8v3 firmware versions through 1.00(ACPT.2)C0,  GS1200-5HPv3 firmware versions through 1.00(ACPU.2)C0, GS1200-8HPv3 firmware versions through 1.00(ACPV.2)C0, and GS1200-10v3 firmware versions through 1.00(ACPW.2)C0 could allow a LAN-based, unauthenticated attacker to read the system configuration from a log file via a crafted HTTP request.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
zyxel / gs1200-5v3 cpe:2.3:a:zyxel:gs1200-5v3:<1.00(ACPS.2)C0:*:*:*:*:*:*:*
zyxel / gs1200-8v3 cpe:2.3:a:zyxel:gs1200-8v3:<1.00(ACPT.2)C0:*:*:*:*:*:*:*
zyxel / gs1200-5hpv3 cpe:2.3:a:zyxel:gs1200-5hpv3:<1.00(ACPU.2)C0:*:*:*:*:*:*:*
zyxel / gs1200-8hpv3 cpe:2.3:a:zyxel:gs1200-8hpv3:<1.00(ACPV.2)C0:*:*:*:*:*:*:*
zyxel / gs1200-10v3 cpe:2.3:a:zyxel:gs1200-10v3:<1.00(ACPW.2)C0:*:*:*:*:*:*:*

References