CVE-2026-24498

🗓️ 27 Feb 2026 02:01:12Reported by krcertType

Authentication bypass exposes data to unauthorized actors on ipTIME devices up to version 15.26.8.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-24498	27 Feb 202602:01	–	attackerkb
CNNVD	EFM多款产品安全漏洞	27 Feb 202600:00	–	cnnvd
Cvelist	CVE-2026-24498	27 Feb 202602:01	–	cvelist
EUVD	EUVD-2026-8983	27 Feb 202603:30	–	euvd
NVD	CVE-2026-24498	27 Feb 202602:16	–	nvd
Positive Technologies	PT-2026-22283	27 Feb 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-24498	28 Feb 202607:47	–	redhatcve
Vulnrichment	CVE-2026-24498	27 Feb 202602:01	–	vulnrichment

NVD

Node

iptime t5008_firmwareRange<15.27.2

AND

iptime t5008Match-

Node

iptime ax2004m_firmwareRange<15.27.2

AND

iptime ax2004mMatch-

Node

iptime ax3000q_firmwareRange<15.27.2

AND

iptime ax3000qMatch-

Node

iptime ax6000m_firmwareRange<15.27.2

AND

iptime ax6000mMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "ipTIME T5008",
    "vendor": "EFM-Networks, Inc.",
    "versions": [
      {
        "changes": [
          {
            "at": "15.27.2",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "15.26.8",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ipTIME AX2004M",
    "vendor": "EFM-Networks, Inc.",
    "versions": [
      {
        "changes": [
          {
            "at": "15.27.2",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "15.26.8",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ipTIME AX3000Q",
    "vendor": "EFM-Networks, Inc.",
    "versions": [
      {
        "changes": [
          {
            "at": "15.27.2",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "15.26.8",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ipTIME AX6000M",
    "vendor": "EFM-Networks, Inc.",
    "versions": [
      {
        "changes": [
          {
            "at": "15.27.2",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "15.26.8",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
boho	www.boho.or.kr/kr/bbs/view.do
iptime	www.iptime.com/iptime/

17 Jun 2026 10:23Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.17.5

CVSS 46

EPSS0.0041

SSVC

CWE-200