EIP-2026-101728

This is a vulnerability writeup describing a hidden backdoor account 'cmuser' with no password and write access permissions in FatPipe Networks WARP/IPVPN/MPVPN versions up to 10.2.2. The account is not visible in the user menu list but grants administrative privileges upon authentication.