PT-2026-39331 · Ugreen · Cm933
0Xd0
·
Published
2026-05-09
·
Updated
2026-05-11
·
CVE-2026-8185
CVSS v3.1
6.3
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
UGREEN CM933 version 1.1.59.4319
Description
An authentication bypass exists in the Administrative Interface of the device. This issue allows an attacker located on the local network to bypass authentication mechanisms due to a flaw in an unknown function.
Recommendations
Upgrade the Administrative Interface component to the version released in late April.
Fix
Missing Authentication
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cm933