CVE-2026-4795 – Zyxel GS1200 Series Missing Authorization Vulnerability (Configuration Disclosure)

CVE ID :CVE-2026-4795

Published : May 26, 2026, 1:42 a.m. | 2 hours, 16 minutes ago

Description :A missing authorization vulnerability in Zyxel GS1200-5v3 firmware versions through 1.00(ACPS.2)C0, GS1200-8v3 firmware versions through 1.00(ACPT.2)C0,  GS1200-5HPv3 firmware versions through 1.00(ACPU.2)C0, GS1200-8HPv3 firmware versions through 1.00(ACPV.2)C0, and GS1200-10v3 firmware versions through 1.00(ACPW.2)C0 could allow a LAN-based, unauthenticated attacker to read the system configuration from a log file via a crafted HTTP request.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9525 – itsourcecode Electronic Judging System edit_judge.php sql injection

CVE-2026-9524 – xianrendzw EasyReport REST Endpoint execute sql injection

CVE-2026-9523 – Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform getCalcmeterDetailDayListTree sql injection

CVE-2026-9521 – fraillt bitsery std_smart_ptr.h loadFromSharedState improper validation of specified type of input