CRITICAL
EDIMAX Technology Co., Ltd.
CVE published 2026-03-17
CVE-2026-32841
A critical authentication bypass vulnerability exists in Edimax GS-5008PL firmware versions 1.00.54 and prior. The flaw stems from a global authentication flag mechanism that fails to properly isolate session states between clients. Once any legitimate user authenticates to the device, the global flag is set, allowing subsequent unauthenticated attackers to access the management interface without credenti [truncated]