EIP-2026-101411

PRE-CVE

Portech MV-372 VoIP Gateway - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101411. PoCs published by Zsolt Imre.

AI-analyzed exploit summary The exploit demonstrates an authentication bypass vulnerability in Portech MV-372 VoIP Gateway by sending crafted HTTP POST requests to change.cgi and save.cgi endpoints. It allows an attacker to modify device settings without proper authentication, potentially leading to unauthorized configuration changes or denial-of-service conditions.

Description

Portech MV-372 VoIP Gateway - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by Zsolt Imre · textremotehardware

https://www.exploit-db.com/exploits/35925

View Code ZIP pw:eip

The exploit demonstrates an authentication bypass vulnerability in Portech MV-372 VoIP Gateway by sending crafted HTTP POST requests to change.cgi and save.cgi endpoints. It allows an attacker to modify device settings without proper authentication, potentially leading to unauthorized configuration changes or denial-of-service conditions.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Portech MV-372 VoIP Gateway

No auth needed

Prerequisites: Network access to the target device · Knowledge of the device's IP address

MITRE ATT&CK

T1110.001 - Password Guessing T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026