CVE-2026-22096 in DC-80info

Summary

by MITRE • 07/13/2026

The webserver running on port 8090 does not require authentication. This allows for sensitive information leakage such as configured passwords, or uploading files through different endpoints.

Be aware that VulDB is the high quality source for vulnerability data.

Analysis

by VulDB Data Team • 07/13/2026

This vulnerability represents a critical security flaw in web server configuration that directly violates fundamental principles of access control and information protection. The absence of authentication requirements on the webserver running on port 8090 creates an unauthenticated access point that exposes sensitive system information and provides attackers with potential pathways for further exploitation. This configuration issue aligns with CWE-284 which specifically addresses improper access control mechanisms, where systems fail to properly enforce access restrictions for resources and services. The vulnerability enables unauthorized users to gain visibility into system configurations, potentially exposing credentials, system parameters, and other confidential data that should remain protected within the organization's infrastructure.

The operational impact of this vulnerability extends beyond simple information disclosure to include potential file upload capabilities that could enable remote code execution or persistent access. Attackers leveraging this unauthenticated access can manipulate system resources through various endpoints without requiring valid credentials, creating multiple attack vectors for exploitation. The web server's lack of authentication mechanisms provides an ideal entry point for threat actors seeking to establish footholds within network environments. This vulnerability directly maps to ATT&CK technique T1078 which describes legitimate credentials being used to log into systems or applications, but in this case the access is gained through a misconfiguration rather than stolen credentials.

The information leakage aspect of this vulnerability presents significant risks for organizations relying on the webserver for configuration management or administrative functions. Configured passwords and system parameters exposed through unauthenticated access can provide attackers with valuable intelligence for subsequent attacks, including potential credential reuse against other systems or services within the network. The ability to upload files through different endpoints creates additional attack surface where malicious payloads could be deployed to compromise the system or establish persistence. This vulnerability demonstrates poor security posture in accordance with industry standards such as those outlined in NIST SP 800-53, which emphasizes the importance of access control and information protection measures for networked systems.

Organizations should implement immediate mitigations including enforcing authentication mechanisms on all web server endpoints, implementing proper access controls through authentication tokens or certificates, and conducting comprehensive security assessments to identify other unauthenticated services. Network segmentation should be implemented to isolate critical systems from publicly accessible web servers, while also deploying web application firewalls to monitor and filter incoming requests. Regular security audits should verify that all network services properly enforce access controls and that sensitive information is appropriately protected through encryption and access restriction measures. The remediation process must include configuration reviews and security hardening practices to prevent similar misconfigurations from occurring in other system components or services.

Responsible

DIVD

Reservation

01/06/2026

Disclosure

07/13/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

low

Sources

Interested in the pricing of exploits?

See the underground prices here!