PT-2026-39331 · Ugreen · Cm933

0Xd0

·

Published

2026-05-09

·

Updated

2026-05-11

·

CVE-2026-8185

CVSS v3.1

6.3

Medium

VectorAV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions UGREEN CM933 version 1.1.59.4319
Description An authentication bypass exists in the Administrative Interface of the device. This issue allows an attacker located on the local network to bypass authentication mechanisms due to a flaw in an unknown function.
Recommendations Upgrade the Administrative Interface component to the version released in late April.

Fix

Missing Authentication

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-8185

Affected Products

Cm933