CVE-2026-7766

Published: May 25, 2026

Modified: May 26, 2026

PUBLISHED

Description

Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the server. The issue was fixed in version 2026-04-23 of the KG-5260xxxx-IL-(G)2 cameras. Rest of the products were fixed in version 2025-04-21.

Vendor	Product	Versions
Kenik	KG-5230TAS-IL-3	affected `0 - < 2025-04-21`
Kenik	KG-5230TAS-IL-G3	affected `0 - < 2025-04-21`
Kenik	KG-5230DAS-IL-G3	affected `0 - < 2025-04-21`
Kenik	KG-5260TZAS-IL-3	affected `0 - < 2025-04-21`
Kenik	KG-5260DZAS-IL-3	affected `0 - < 2025-04-21`
Kenik	KG-5260TZAS-IL-G3	affected `0 - < 2025-04-21`
Kenik	KG-5260DZAS-IL-G3	affected `0 - < 2025-04-21`
Kenik	KG-5260xxxx-IL-(G)2	affected `0 - < 2026-04-23`

Weaknesses (CWE)

CWE-22

References

https://cert.pl/posts/2026/05/CVE-2026-7766

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-7766

Description

Affected Products

Weaknesses (CWE)

References