Improper Access Control in Quantum Networks Router by Quantum Networks
CVE-2026-41039
8.7HIGH
What is CVE-2026-41039?
The vulnerability identified in Quantum Networks router arises from improper access control measures and insecure default configurations within the web-based management interface. This flaw allows unauthenticated attackers to access sensitive API endpoints on the device. If successfully exploited, adversaries might gain access to critical internal information, including scripts and directories, potentially compromising the security of the affected system.
Affected Version(s)
Router QN-I-470 at 6.1.1.B1
References
CVSS V4
Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved
Credit
This vulnerability is reported by Rakesh Elamaran, Joel William A, Bajino Viju, Stalin S, Janish Andrin J and Kalpana B N.