EIP-2026-104096

PRE-CVE

SyGate 5.0 - Insecure UDP Source Port Firewall Bypass Weak Default Configuration

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104096. PoCs published by David Fernández.

AI-analyzed exploit summary This exploit leverages a default configuration in Sygate Pro firewall that allows traffic from UDP ports 137 or 138, potentially enabling firewall bypass. The provided command uses nmap to scan a victim's IP address with UDP packets originating from port 137.

Description

SyGate 5.0 - Insecure UDP Source Port Firewall Bypass Weak Default Configuration

Exploits (1)

exploitdb SCANNER VERIFIED
by David Fernández · textremotemultiple
https://www.exploit-db.com/exploits/22200

This exploit leverages a default configuration in Sygate Pro firewall that allows traffic from UDP ports 137 or 138, potentially enabling firewall bypass. The provided command uses nmap to scan a victim's IP address with UDP packets originating from port 137.

Classification
Scanner 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Sygate Pro firewall
No auth needed
Prerequisites: nmap installed · victim's IP address
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026