VYPR
Unrated severityNVD Advisory· Published Feb 27, 2026· Updated Mar 2, 2026

SODOLA SL902-SWTGW124AS <= 200.1.20 Cleartext Credential Transmission

CVE-2026-27752

Description

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials over unencrypted HTTP, allowing attackers to capture credentials. An attacker positioned to observe network traffic between a user and the device can intercept credentials and reuse them to gain administrative access to the gateway.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <=200.1.20
  • Shenzhen Hongyavision Technology Co., Ltd. (Sodola Networks)/SODOLA SL902-SWTGW124ASv5
    Range: 0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.