CVE-2026-21411 | THREATINT

Description

Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow an attacker to bypass administrator authentication and change the password.

PUBLISHED Reserved 2026-01-05 | Published 2026-01-06 | Updated 2026-01-06 | Assigner jpcert

HIGH: 8.8CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

HIGH: 8.7CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

Authentication Bypass Using an Alternate Path or Channel

Product status

all versions prior to FW5.0.8

affected

all versions prior to FW5.0.8

affected

all versions prior to FW5.0.8

affected

all versions prior to FW5.0.8

affected

all versions prior to FW5.0.8

affected

all versions prior to FW5.0.8

affected

References

www.plathome.co.jp/support/software/fw5/dx1-v5-0-8/

jvn.jp/en/vu/JVNVU97172240/

cve.org (CVE-2026-21411)

nvd.nist.gov (CVE-2026-21411)

Download JSON

help @ threatint.eu