CVE-2026-9141
published 2026-05-20CVE-2026-9141: Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains an authentication bypass vulnerability in the embedded web configuration interface that allows…
PriorityP271critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.48%
37.9th percentile
Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains an authentication bypass vulnerability in the embedded web configuration interface that allows unauthenticated attackers to access internal application pages without any session management or server-side authentication checks. Attackers with network access can directly request internal resources such as index.zhtml, point.zhtml, and log.shtml to gain full administrative read and write access, enabling unauthorized modification of alarm routing, device configuration, and disruption of monitoring and control functions.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| taiko_network_communications_pte_ltd | ag1000-01a_sms_alert_gateway | — | — |
| taiko_network_communications_pte_ltd | ag1000-01a_sms_alert_gateway | — | — |
| taiko_network_communications_pte_ltd | ag1000-01a_sms_alert_gateway | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv4.09.3CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Taiko AG1000-01A SMS Alert Gateway 7.3/8 Embedded Web Configuration Interface log.shtml missing authentication
vuldb·2026-05-20·CVSS 9.3
CVE-2026-9141 [CRITICAL] Taiko AG1000-01A SMS Alert Gateway 7.3/8 Embedded Web Configuration Interface log.shtml missing authentication
A vulnerability described as critical has been identified in Taiko AG1000-01A SMS Alert Gateway 7.3/8. The affected element is an unknown function of the file log.shtml of the component Embedded Web Configuration Interface. Such manipulation leads to missing authentication.
This vulnerability is traded as CVE-2026-9141. The attack may be launched remotely. There is no exploit available.
GHSA
GHSA-c89f-cvmv-ffjf: Taiko AG1000-01A SMS Alert Gateway Rev 7
ghsa_unreviewed·2026-05-20
CVE-2026-9141 [CRITICAL] CWE-306 GHSA-c89f-cvmv-ffjf: Taiko AG1000-01A SMS Alert Gateway Rev 7
Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains an authentication bypass vulnerability in the embedded web configuration interface that allows unauthenticated attackers to access internal application pages without any session management or server-side authentication checks. Attackers with network access can directly request internal resources such as index.zhtml, point.zhtml, and log.shtml to gain full administrative read and write access, enabling unauthorized modification of alarm routing, device configuration, and disruption of monitoring and control functions.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://medium.com/@forgetmen0t/multiple-vulnerabilities-in-taiko-ag1000-01a-sms-alert-gateway-82095b1d633ehttps://www.vulncheck.com/advisories/taiko-ag1000-01a-rev-8-authentication-bypass-via-web-interfacehttps://medium.com/@forgetmen0t/multiple-vulnerabilities-in-taiko-ag1000-01a-sms-alert-gateway-82095b1d633e
2026-05-20
Published