Security Advisory

CVE-2026-27752

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-27 18:08:32

Last updated 2026-03-02 17:29:57

Assigner VulnCheck

State PUBLISHED

Description

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials over unencrypted HTTP, allowing attackers to capture credentials. An attacker positioned to observe network traffic between a user and the device can intercept credentials and reuse them to gain administrative access to the gateway.

← Browse all CVEs View on cve.org ↗