CVE-2026-2624

CRITICAL

Antikor NGFW 2.0.1298-2.0.1301 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-2624. PoCs published by sadik.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in ePati Antikor NGFW via WebSocket connections. It sends crafted JSON payloads to leak sensitive system data and network packet information without authentication.

Description

Missing Authentication for Critical Function vulnerability in ePati Cyber ​​Security Technologies Inc. Antikor Next Generation Firewall (NGFW) allows Authentication Bypass. This issue affects Antikor Next Generation Firewall (NGFW): from v.2.0.1298 before v.2.0.1301.

Exploits (1)

exploitdb WORKING POC
by sadik · textwebappsmultiple
https://www.exploit-db.com/exploits/52562

This exploit demonstrates an authentication bypass vulnerability in ePati Antikor NGFW via WebSocket connections. It sends crafted JSON payloads to leak sensitive system data and network packet information without authentication.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: ePati Antikor NGFW v.2.0.1298 - v.2.0.1301
No auth needed
Prerequisites: WebSocket endpoint accessible on target port (default 8800) · SSL/TLS connection (self-signed certificates ignored)
devstral-2 · analyzed May 15, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource government-resource broken-link
https://www.usom.gov.tr/bildirim/tr-26-0082

Scores

CVSS v3 9.8
EPSS 0.0219
EPSS Percentile 80.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-306
Status published
Products (2)
epati/antikor_next_generation_firewall 2.0.1298 - 2.0.1301
ePati Cyber ​​Security Technologies Inc./Antikor Next Generation Firewall (NGFW) v.2.0.1298 - v.2.0.1301
Published Feb 25, 2026
Tracked Since Feb 25, 2026