PT-2026-22371 · Sodola · Sodola Sl902-Swtgw124As
Kazuma Matsumoto
·
Published
2026-02-27
·
Updated
2026-03-03
·
CVE-2026-27753
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20
Description
The firmware contains a flaw that permits remote attackers to attempt unlimited logins to the management interface. This bypasses normal security measures, allowing attackers to guess passwords without account lockout or rate limiting. Successful exploitation grants unauthorized access to the device management interface.
Recommendations
Update the firmware to a version later than 200.1.20.
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sodola Sl902-Swtgw124As