CVE-2026-26235

JUNG Smart Visu Server 1.1.1050 - 'JUNG Smart Visu Server' Missing Authentication

CVSS 8.7 HIGHEPSS 1.8%CWE-306

JUNG Smart Visu Server 1.1.1050 contains a denial of service vulnerability that allows unauthenticated attackers to remotely shutdown or reboot the server. Attackers can send a single POST request to trigger the server reboot without requiring any authentication.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected products

ALBRECHT JUNG GMBH & CO. KG · JUNG Smart Visu Server

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/52536unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.vulncheck.com/advisories/jung-smart-visu-server-jung-smart-visu-server-missing-authentication https://www.zeroscience.mk/en/vulnerabilities/ZSL-2026-5971.php