CVE-2026-24448
CRITICALMR-GM5L-S1 & MR-GM5A-L1 - Auth Bypass
Title source: llmDescription
Use of hard-coded credentials issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to obtain administrative access.
Scores
CVSS v3
9.8
EPSS
0.0006
EPSS Percentile
20.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-798
Status
published
Published
Mar 11, 2026
Tracked Since
Mar 11, 2026