CVE-2026-1791

LOW

Hillstone Networks Operation and Maintenance Security Gateway <V5.5...

Title source: llm

Description

Unrestricted Upload of File with Dangerous Type vulnerability in Hillstone Networks Operation and Maintenance Security Gateway on Linux allows Upload a Web Shell to a Web Server.This issue affects Operation and Maintenance Security Gateway: V5.5ST00001B113.

References (1)

[Various Sources] https://www.hillstonenet.com.cn/security-notification/2025/12/08/wgscld/

Scores

CVSS v3 2.7

EPSS 0.0002

EPSS Percentile 4.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-434

Status published

Products (1)

Hillstone Networks/Operation and Maintenance Security Gateway V5.5ST00001B113

Published Feb 04, 2026

Tracked Since Feb 18, 2026