CVE-2026-9141

Name of the Vulnerable Software and Affected Versions Taiko AG1000-01A SMS Alert Gateway Rev 7.3 Taiko AG1000-01A SMS Alert Gateway Rev 8

Description An authentication bypass exists in the embedded web configuration interface. This flaw allows unauthenticated attackers with network access to access internal application pages because the system lacks session management and server-side authentication checks. By directly requesting internal resources such as 'index.zhtml', 'point.zhtml', and 'log.shtml', attackers can obtain full administrative read and write access. This can lead to unauthorized modification of alarm routing and device configuration, as well as the disruption of monitoring and control functions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.