CVE-2026-41037

Name of the Vulnerable Software and Affected Versions Quantum Networks router (affected versions not specified)

Description The web-based management interface lacks rate limiting and CAPTCHA protection for failed login attempts. This allows an attacker on the same network to perform brute force attacks against administrative credentials to gain unauthorized root access. Additionally, the management CLI is susceptible to command injection, which can lead to remote code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.