Vulnerabilities

Report: CVE-2026-5842 - decolua 9router Administrative API Endpoint api authorization - Full Analysis

2026-04-09 0 views admin

CVE ID :CVE-2026-5842 Published : April 9, 2026, 5:16 a.m. | 1 hour, 31 minutes ago Description :A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation leads to authorization bypass. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 0.3.75 is sufficient to resolve this issue. It is suggested to upgrade the affected component. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-5842

Severity

HIGH

Published

April 9, 2026

🏷️ Tags

reportdecolua9routeradministrativeendpointauthorizationanalysispublishedcvecve-2026-5842

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-5842 - decolua 9router Administrative API Endpoint api authorization - Full Analysis

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Latest: CVE-2026-5852 - Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection

Report: CVE-2026-5853 - Totolink A7100RU CGI cstecgi.cgi setIpv6LanCfg os command injection

Report: Breaking: CVE-2026-5854 - Totolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os command injection

Report: CVE-2026-5847 - code-projects Movie Ticketing System SQL Database Backup File moviedb.sql informa

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting