216.73.216.214

CVE-2026-7413

· Published 07/05/2026 17:15 · Modified 07/05/2026 18:46

Labels: CVE-2026-7413 2026-05-07CVE-2026-7413CWE-912[email protected]

Essential information

Published
07/05/2026 17:15
Modified
07/05/2026 18:46
Author
Creator
CVSS
7.2 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated (or weakly authenticated) access to privileged functionality. The backdoor is undocumented, cannot be disabled via user-facing settings, and survives factory reset and ordinary firmware updates.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
yarbo / firmware cpe:2.3:a:yarbo:firmware:2.3.9:*:*:*:*:*:*:*

References