VYPR
Unrated severityNVD Advisory· Published Mar 17, 2026· Updated Mar 18, 2026

Edimax GS-5008PL <= 1.00.54 Admin Credentials Stored in Cleartext

CVE-2026-32842

Description

Edimax GS-5008PL firmware version 1.00.54 and prior contain an insecure credential storage vulnerability that allows attackers to obtain administrator credentials by accessing configuration backup files. Attackers can download the config.bin file through fupload.cgi to extract plaintext username and password fields for unauthorized administrative access.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Edimax/GS-5008PLllm-fuzzy
    Range: <=1.00.54
  • EDIMAX Technology Co., Ltd./Edimax GS-5008PLv5
    Range: 0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.