Mbs-solutions Universal Gateway Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Mbs-solutions Universal Gateway Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2026-35075 — CVSS 9.8 (critical): An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all…
CVE-2026-35085 — CVSS 8.8 (high): A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root.
CVE-2026-35082 — CVSS 8.8 (high): The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of…
CVE-2026-35083 — CVSS 8.8 (high): A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.
CVE-2026-35084 — CVSS 8.8 (high): A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root.
CVE-2026-35080 — CVSS 8.1 (high): The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of…
CVE-2026-35081 — CVSS 8.1 (high): The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of…
CVE-2026-35076 — CVSS 8.1 (high): The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of…
CVE-2026-35077 — CVSS 8.1 (high): The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of…
CVE-2026-35078 — CVSS 8.1 (high): The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of…
CVE-2026-35079 — CVSS 8.1 (high): The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of…