PT-2026-25947 · Edimax · Edimax Gs-5008Pl
Kazuma Matsumoto
·
Published
2026-03-17
·
Updated
2026-03-18
·
CVE-2026-32841
CVSS v3.1
8.1
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Edimax GS-5008PL firmware versions prior to 1.00.54
Description
The Edimax GS-5008PL firmware contains a flaw that allows attackers to bypass authentication and access the management interface without valid credentials. This is possible due to a mechanism involving global authentication flags. After any user successfully authenticates, an attacker can gain administrative access, enabling unauthorized actions such as password changes, firmware uploads, and configuration modifications.
Recommendations
Update the firmware to a version newer than 1.00.54.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Edimax Gs-5008Pl