CVE Catalog

CVE-2026-50224

MediumCVSS 4.9
Published: Updated: Translated: NVD NIST

Summary

The web administration panel is accessible on the public IPv6 address on port [::]:8080 without default firewall limits, allowing internal API endpoints to be reachable over the WAN.

Risk Assessment

The lack of firewall restrictions may lead to unauthorized access to sensitive internal resources, increasing the risk of attacks and security breaches.

Recommendation

It is recommended to configure the firewall to restrict access to the administration panel and internal API endpoints to trusted IP addresses.

Original NVD description (English source)

The web administration panel binds broadly to the public IPv6 address space on port [::]:8080 without default firewall limits, making internal API endpoints reachable over the WAN.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS