CVE-2026-24498

Published: Feb 27, 2026

Modified: Feb 27, 2026

PUBLISHED

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in EFM-Networks, Inc. IpTIME T5008, EFM-Networks, Inc. IpTIME AX2004M, EFM-Networks, Inc. IpTIME AX3000Q, EFM-Networks, Inc. IpTIME AX6000M allows Authentication Bypass.This issue affects ipTIME T5008: through 15.26.8; ipTIME AX2004M: through 15.26.8; ipTIME AX3000Q: through 15.26.8; ipTIME AX6000M: through 15.26.8.

Vendor	Product	Versions
EFM-Networks, Inc.	ipTIME T5008	affected `0 - <= 15.26.8`
EFM-Networks, Inc.	ipTIME AX2004M	affected `0 - <= 15.26.8`
EFM-Networks, Inc.	ipTIME AX3000Q	affected `0 - <= 15.26.8`
EFM-Networks, Inc.	ipTIME AX6000M	affected `0 - <= 15.26.8`

Weaknesses (CWE)

CWE-200

References

https://iptime.com/iptime/?page_id=126&dffid=1&dfsid=15&dftid=589&uid=26901&mod=document

https://www.boho.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000302&searchWrd=&menuNo=205023&pageIndex=1&categoryCode=&nttId=71987

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-24498

Description

Affected Products

Weaknesses (CWE)

References