mirror of
https://github.com/0x5t4l1n/CVE.git
synced 2026-05-26 11:25:49 +00:00
copilot-swe-agent[bot]
528971beb3
Agent-Logs-Url: https://github.com/Stalin-143/CVE/sessions/60d91e38-5aaf-4d3e-9b6e-5bda848b4d3f Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
24 lines
750 B
Markdown
24 lines
750 B
Markdown
|
|
|
|
# CVE-2026-41039 — Information Disclosure (Quantum Networks Router)
|
|
|
|
**Severity:** High (8.7)
|
|
**CWE:** CWE-306
|
|
|
|
## Summary
|
|
Missing authentication and improper access control expose internal API endpoints, allowing attackers to access sensitive data.
|
|
|
|
## Impact
|
|
- Information disclosure
|
|
- Exposure of internal endpoints, scripts, directories
|
|
|
|
## Fix
|
|
Enforce authentication, secure API endpoints, and harden default configurations.
|
|
|
|
## References
|
|
- https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2026-0200
|
|
- https://www.cve.org/CVERecord?id=CVE-2026-41039
|
|
|
|
## Credits
|
|
Rakesh Elamaran, Joel William A, Bajino Viju, Stalin S, Janish Andrin J, Kalpana B N
|