Access Control Vulnerability in Dotouch XproUPF by Dotouch
CVE-2026-8233

2.1LOW

Key Information:

Vendor

Dotouch

Status
Xproupf
Vendor
CVE Published:
10 May 2026

What is CVE-2026-8233?

A vulnerability was identified in Dotouch XproUPF 2.0.0-release-088aa7c4, where an inadequate implementation of access controls in the UPF component allows for potential unauthorized access. Exploiting this vulnerability requires a significant level of complexity, thereby making it challenging to execute. The vendor has been informed about this issue, emphasizing the need for urgent attention to safeguard against potential threats.

Affected Version(s)

XproUPF 2.0.0-release-088aa7c4

References

https://vuldb.com/vuln/362450
vdb-entry
https://vuldb.com/vuln/362450/cti
signaturepermissions-required
https://vuldb.com/submit/808799
third-party-advisory

CVSS V4

Score:
2.1
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

LinZiyu (VulDB User)
ZiyuLin (VulDB User)
VulDB CNA Team
.