Primary

Context

ZLAN Information Technology Co. ZLAN5143D Authentication Bypass Vulnerability

Vulnerability

A vulnerability exists in ZLAN Information Technology Co. ZLAN5143D version 1.600, allowing authentication to be bypassed by directly accessing internal URLs. This could lead to unauthorized actions, such as resetting the device password, without the need for authentication.

Impact

Exploitation of this vulnerability could result in an attacker bypassing authentication or resetting the device password.

Remediation

ZLAN Information Technology Co. did not respond to CISA's attempts at coordination. Users of ZLAN5143D devices are encouraged to contact ZLAN and keep their systems up to date.

Added: Feb 11, 2026, 5:41 PM

Updated: Feb 11, 2026, 6:10 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

3.0

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

3.0

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ZLAN Information Technology Co. ZLAN5143D Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating