What is the CVSS score of CVE-2026-2624?

CVE-2026-2624 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Antikor Next Generation Firewall are affected by CVE-2026-2624?

A critical authentication bypass vulnerability in Antikor Next Generation Firewalls (CVSS 9.8) allows unauthenticated attackers to access and manipulate firewall configurations without credentials.

Is there a public PoC exploit available for CVE-2026-2624?

Yes, a public proof-of-concept exploit is available for CVE-2026-2624. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-2624?

Within 24 hours: Inventory all Antikor firewalls in production, isolate them from untrusted networks, and enable enhanced monitoring for unauthorized access attempts. Within 7 days: Implement network segmentation to restrict management access to firewalls via dedicated administrative networks, deploy WAF rules to block exploitation attempts, and disable remote management interfaces if not operationally critical. Within 30 days: Engage Antikor for patch timeline and evaluate replacement or upgrade strategies; establish daily vulnerability scanning for exploitation indicators.

Antikor Next Generation Firewall CVE-2026-2624

CRITICAL

Missing Authentication for Critical Function (CWE-306)

2026-02-25 iletisim@usom.gov.tr

Authentication Bypass Antikor Next Generation Firewall

9.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

CVE Published

Feb 25, 2026 - 13:16 nvd

CRITICAL 9.8

DescriptionCVE.org

Missing Authentication for Critical Function vulnerability in ePati Cyber Security Technologies Inc. Antikor Next Generation Firewall (NGFW) allows Authentication Bypass.This issue affects Antikor Next Generation Firewall (NGFW): from v.2.0.1298 before v.2.0.1301.

AnalysisAI

Missing authentication for critical functions in ePati Antikor Next Generation firewall. Unauthenticated remote access to firewall management capabilities.

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Send unauthenticated network request

Exploit

Access critical firewall function

Execution

Bypass authentication mechanism

Impact

Execute unauthorized operations

Access

Send unauthenticated network request

Exploit

Access critical firewall function

Execution

Bypass authentication mechanism

Impact

Execute unauthorized operations

Vulnerability AssessmentAI

Exploitation	Antikor NGFW versions 2.0.1298 through 2.0.1300 with the affected critical function exposed to network access. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.8. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Attacker discovers ePati Antikor firewall, accesses management without credentials, disables security rules, enables traffic forwarding, or uses as network pivot.
Remediation	Apply vendor patch immediately. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all Antikor firewalls in production, isolate them from untrusted networks, and enable enhanced monitoring for unauthorized access attempts. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-2624 vulnerability details – vuln.today

Back

Antikor Next Generation Firewall CVE-2026-2624

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code