Skip to main content

WAF-ASP EUVDEUVD-2026-41371

| CVE-2026-4767 CRITICAL
Missing Authentication for Critical Function (CWE-306)
2026-07-02 TR-CERT GHSA-6qqj-v86p-pcpj
9.8
CVSS 3.1 · Vendor: TR-CERT
Share

Severity by source

Vendor (TR-CERT) PRIMARY
9.8 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vuln.today AI
9.8 CRITICAL

Missing authentication on a network-reachable critical function gives unauthenticated, low-complexity, no-interaction access (AV:N/AC:L/PR:N/UI:N) with full appliance compromise, so C/I/A all High.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (TR-CERT).

CVSS VectorVendor: TR-CERT

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
Analysis Generated
Jul 02, 2026 - 14:01 vuln.today

DescriptionCVE.org

Missing authentication for critical function vulnerability in TR7 Cyber ​​Defense Inc. WAF-ASP allows Authentication Abuse.

This issue affects WAF-ASP: from v1.0.324.900 before v1.4.0.117.

AnalysisAI

Authentication abuse in TR7 Cyber Defense WAF-ASP (versions v1.0.324.900 through v1.4.0.116) lets remote unauthenticated attackers invoke a security-critical function that fails to enforce any authentication check, yielding full compromise of confidentiality, integrity, and availability per the CVSS 9.8 rating. Because WAF-ASP is a web application firewall, abusing this exposed function can subvert the very protection layer meant to shield downstream applications. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify Internet-exposed WAF-ASP host
Delivery
Send crafted request to critical function
Exploit
Bypass missing authentication check
Execution
Invoke privileged WAF operation
Impact
Alter policy or exfiltrate data

Vulnerability AssessmentAI

Exploitation No special conditions - remote unauthenticated exploitation against network-reachable installations of TR7 WAF-ASP in the affected version range (v1.0.324.900 up to v1.4.0.117), consistent with the AV:N/AC:L/PR:N/UI:N vector. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals available are limited but consistent toward high priority. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker scans for Internet-exposed WAF-ASP instances and sends a crafted HTTP request directly to the unauthenticated critical function, with no credentials, tokens, or user interaction required. Leveraging the missing authentication check, they invoke administrative or policy functionality to read protected data, alter or disable WAF filtering rules, or otherwise compromise the appliance, exposing every application behind it. …
Remediation Upgrade WAF-ASP to v1.4.0.117 or later, which is the first release outside the affected range and per the disclosure the fixed version (Vendor-released patch: v1.4.0.117). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify and document all TR7 WAF-ASP appliances running versions v1.0.324.900 through v1.4.0.116; review network logs for unauthorized access attempts to these systems. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-41371 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy