These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A critical vulnerability was discovered in GNCC GP5 v7.1.76, identified as CVE-2026-36182. This vulnerability involves the use of a weak hashing algorithm to protect the root password. The weakness, scored at 9.8 on the CVSS scale, could potentially allow attackers to obtain root credentials and privileges via a brute-force attack. The vulnerability was published on [cve-org](https://www.cve.org/CVERecord [truncated]
A vulnerability was discovered in GNCC GP5 v7.1.76, where the factory reset functionality fails to clear sensitive cryptographic material in the JFFS2 configuration partition. This flaw may allow attackers to recover and obtain sensitive user data.
CVE-2026-36176 is a HIGH-severity vulnerability in GNCC GP5 v7.1.76. The vulnerability allows physically-proximate attackers to extract pre-signed Backblaze B2 upload URLs (PUT requests) stored in plaintext to the serial console, enabling unauthorized operations via monitoring the serial UART interface.