ByteOS Network

Vulnerability Details :

CVE-2026-24498

Assigner-krcert

Assigner Org ID-cdd7a122-0fae-4202-8d86-14efbacc2863

Published At-27 Feb, 2026 | 02:01

Updated At-27 Feb, 2026 | 16:03

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in EFM-Networks, Inc. IpTIME T5008, EFM-Networks, Inc. IpTIME AX2004M, EFM-Networks, Inc. IpTIME AX3000Q, EFM-Networks, Inc. IpTIME AX6000M allows Authentication Bypass.This issue affects ipTIME T5008: through 15.26.8; ipTIME AX2004M: through 15.26.8; ipTIME AX3000Q: through 15.26.8; ipTIME AX6000M: through 15.26.8.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:krcert

Assigner Org ID:cdd7a122-0fae-4202-8d86-14efbacc2863

Published At:27 Feb, 2026 | 02:01

Updated At:27 Feb, 2026 | 16:03

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

EFM-Networks, Inc.

Product

ipTIME T5008

Default Status

unaffected

Versions

Affected

From 0 through 15.26.8 (custom)
- -> unaffectedfrom15.27.2

Vendor

EFM-Networks, Inc.

Product

ipTIME AX2004M

Default Status

unaffected

Versions

Affected

From 0 through 15.26.8 (custom)
- -> unaffectedfrom15.27.2

Vendor

EFM-Networks, Inc.

Product

ipTIME AX3000Q

Default Status

unaffected

Versions

Affected

From 0 through 15.26.8 (custom)
- -> unaffectedfrom15.27.2

Vendor

EFM-Networks, Inc.

Product

ipTIME AX6000M

Default Status

unaffected

Versions

Affected

From 0 through 15.26.8 (custom)
- -> unaffectedfrom15.27.2

Problem Types

Type	CWE ID	Description
CWE	CWE-200	CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

Type: CWE

CWE ID: CWE-200

Description: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

Metrics

Version	Base score	Base severity	Vector
4.0	6.0	MEDIUM	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Version: 4.0

Base score: 6.0

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Impacts

CAPEC ID	Description
CAPEC-115	CAPEC-115 Authentication Bypass

CAPEC ID: CAPEC-115

Description: CAPEC-115 Authentication Bypass

References

Hyperlink	Resource
https://iptime.com/iptime/?page_id=126&dffid=1&dfsid=15&dftid=589&uid=26901&mod=document	N/A
https://www.boho.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000302&searchWrd=&menuNo=205023&pageIndex=1&categoryCode=&nttId=71987	N/A

Hyperlink: https://iptime.com/iptime/?page_id=126&dffid=1&dfsid=15&dftid=589&uid=26901&mod=document

Resource: N/A

Hyperlink: https://www.boho.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000302&searchWrd=&menuNo=205023&pageIndex=1&categoryCode=&nttId=71987

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:vuln@krcert.or.kr

Published At:27 Feb, 2026 | 02:16

Updated At:27 Feb, 2026 | 14:06

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	6.0	MEDIUM	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Secondary

Version: 4.0

Base score: 6.0

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Weaknesses

CWE ID	Type	Source
CWE-200	Secondary	vuln@krcert.or.kr

CWE ID: CWE-200

Type: Secondary

Source: vuln@krcert.or.kr

References

Hyperlink	Source	Resource
https://iptime.com/iptime/?page_id=126&dffid=1&dfsid=15&dftid=589&uid=26901&mod=document	vuln@krcert.or.kr	N/A
https://www.boho.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000302&searchWrd=&menuNo=205023&pageIndex=1&categoryCode=&nttId=71987	vuln@krcert.or.kr	N/A

Hyperlink: https://iptime.com/iptime/?page_id=126&dffid=1&dfsid=15&dftid=589&uid=26901&mod=document

Source: vuln@krcert.or.kr

Resource: N/A

Hyperlink: https://www.boho.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000302&searchWrd=&menuNo=205023&pageIndex=1&categoryCode=&nttId=71987

Source: vuln@krcert.or.kr

Resource: N/A

Similar CVEs

1Records found

CVE-2025-3508

Matching Score-4

Assigner-HP Inc.

View Details

Matching Score-4

Assigner-HP Inc.

CVSS Score-6||MEDIUM

EPSS-0.04% / 12.97%

7 Day CHG-0.02%

Published-25 Jul, 2025 | 15:58

Updated-24 Feb, 2026 | 14:44

Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information.

Vendor-HP Inc.

Product-w6b55g w6b56e_firmware t8w18c w3z72a w3z72e w3z72f_firmware t8w15f w3z71d_firmware w6b56d_firmware 1vd85a_firmware t8w18g t8w18f_firmware w3z71c_firmware x9d24h t8w15g w6b55a_firmware t8w18d_firmware t8w16b_firmware 1vd87f x9d24b w3z72b x9d24c 1vd88f t8w16e w6b55h_firmware t8w15b w6b55b 1vd84a_firmware w6b55e w6b55a t8w15e w6b55c_firmware w3z71c x9d24f_firmware t8w18b_firmware x9d24e w3z71a_firmware w6b55h w6b55g_firmware 1vd88b 1vd88f_firmware w3z72c_firmware w3z71b_firmware w6b55f w6b56b_firmware t8w16h_firmware w3z72g_firmware w6b56g 1vd87a w6b56b 1vd88b_firmware t8w16b 1vd86a_firmware w3z72g t8w18f w3z71f_firmware t8w15a w3z71e_firmware 1vd84a w6b56f w6b55b_firmware w6b56f_firmware t8w18e t8w18e_firmware t8w15e_firmware w6b56a t8w15g_firmware 1vd88a_firmware w3z72h_firmware t8w18h_firmware t8w16g w6b56h_firmware w3z71d x9d24g_firmware t8w16c_firmware t8w15c_firmware 1vd87f_firmware t8w18b 1vd83a t8w16a w3z71g_firmware w3z71h w6b56g_firmware w3z72b_firmware 1vd87a_firmware x9d24h_firmware w3z72d t8w15d_firmware w6b55d_firmware x9d24e_firmware w3z71f t8w15c w6b56c_firmware w3z72d_firmware t8w18h t8w16d w3z72f w3z71b x9d24c_firmware w6b56d w3z71a x9d24b_firmware x9d24f t8w16f w3z71g t8w16f_firmware w6b55c t8w16e_firmware t8w16g_firmware x9d24g t8w18d t8w15h x9d24a w6b56h 1vd85a x9d24d t8w16d_firmware t8w16h t8w15b_firmware w6b55d t8w16a_firmware w3z72e_firmware t8w16c t8w18a_firmware w3z72c t8w18a 1vd88a w3z71e t8w15h_firmware w3z72a_firmware w6b56e t8w15a_firmware x9d24a_firmware 1vd86a w6b55f_firmware x9d24d_firmware w3z71h_firmware 1vd83a_firmware t8w15d t8w18g_firmware t8w15f_firmware w6b56a_firmware t8w18c_firmware w6b55e_firmware w3z72h w6b56c Certain HP DesignJet products

CWE ID-CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CVE-2026-24498

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Affected

Affected

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs