CVE Catalog
CVE-2026-50224
MediumCVSS 4.9Summary
The web administration panel is accessible on the public IPv6 address on port [::]:8080 without default firewall limits, allowing internal API endpoints to be reachable over the WAN.
Risk Assessment
The lack of firewall restrictions may lead to unauthorized access to sensitive internal resources, increasing the risk of attacks and security breaches.
Recommendation
It is recommended to configure the firewall to restrict access to the administration panel and internal API endpoints to trusted IP addresses.
Original NVD description (English source)
The web administration panel binds broadly to the public IPv6 address space on port [::]:8080 without default firewall limits, making internal API endpoints reachable over the WAN.

