CVE-2026-57920 | Peplink InControl up to 2026-06-03 /rest/o incorrect behavior order
摘要
A vulnerability was found in <a href="https://vuldb.com/product/peplink:incontrol">Peplink InControl up to 2026-06-03</a>. It has been rated as <a href="https://vuldb.com/kb/risk">problematic</a>. This vulnerability affects unknown code of the file <em>/rest/o</em>. Performing a manipulation results in incorrect behavior order: authorization before parsing and canonicalization. This vulnerability is reported as <a href="https://vuldb.com/cve/CVE-2026-57920">CVE-2026-57920</a>. The attack is possible to be carried out remotely. No exploit exists. This product is a managed service, indicating that users are not permitted to maintain vulnerability countermeasures themselves. Upgrading the affected component is advised.
标签
- CVE-2026-57920
扩展字段
{
"raw_pub_date": "Fri, 26 Jun 2026 17:07:58 +0200"
}