PT-2026-25944 · Edimax · Edimax Gs-5008Pl
Kazuma Matsumoto
·
Published
2026-03-17
·
Updated
2026-03-18
·
CVE-2026-32838
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Edimax GS-5008PL firmware versions 1.00.54 and earlier
Description
The web management interface uses unencrypted HTTP, lacking TLS or SSL encryption. Attackers on the same network can intercept management traffic, potentially capturing administrator credentials and sensitive configuration data.
Recommendations
Update to a version that implements TLS or SSL encryption for the web management interface.
Fix
Cleartext Transmission of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Edimax Gs-5008Pl