Primary

Context

Nozomi Networks Waterfall WF-500 Authentication Bypass Vulnerability in Console WebUI

Vulnerability

An authentication bypass vulnerability has been identified in the Console WebUI of Nozomi Networks Waterfall WF-500 TX and RX Hosts, version 7.9.1.0 R2502171040. This vulnerability allows remote unauthenticated attackers to bypass authentication and perform actions as an authenticated user.

Impact

Exploitation of this vulnerability allows for unauthorized access to the Console web application, enabling attackers to perform actions as if they were authenticated users.

Added: May 29, 2026, 12:23 PM

Updated: May 29, 2026, 12:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

9.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

9.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nozomi Networks Waterfall WF-500 Authentication Bypass Vulnerability in Console WebUI

Vulnerability

Impact

Affected Products

Nozomi Networks WF-500 TX

Nozomi Networks WF-500 RX

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating