Login Sign Up

CVE-2026-0796

8.8 HIGH
Remote Code Execution

📋 TL;DR

This vulnerability allows authenticated remote attackers to execute arbitrary system commands on ALGO 8180 IP Audio Alerter devices through command injection in the web interface. Attackers can gain full control of affected devices, potentially compromising the entire network. Organizations using ALGO 8180 IP Audio Alerter devices with web UI access are affected.

💻 Affected Systems

Products:
  • ALGO 8180 IP Audio Alerter
Versions: All versions prior to patch
Operating Systems: Embedded Linux
Default Config Vulnerable: ⚠️ Yes
Notes: Requires web UI access with authentication credentials. Default credentials may increase risk.

📦 What is this software?

8180 Ip Audio Alerter Firmware by Algosolutions

View all CVEs affecting 8180 Ip Audio Alerter Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device takeover leading to network pivoting, data exfiltration, deployment of persistent malware, or disruption of audio alerting systems.

🟠

Likely Case

Unauthorized access to device configuration, installation of backdoors, credential harvesting, or disruption of audio alerting functionality.

🟢

If Mitigated

Limited impact due to network segmentation, strong authentication controls, and restricted web interface access.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Authentication required but command injection is straightforward once authenticated. ZDI advisory suggests exploit development is likely.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check vendor advisory for specific version

Vendor Advisory: https://www.zerodayinitiative.com/advisories/ZDI-26-018/

Restart Required: Yes

Instructions:

1. Contact ALGO vendor for security patch. 2. Backup device configuration. 3. Apply patch via web UI or management interface. 4. Restart device. 5. Verify patch installation.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate ALGO devices from critical networks and restrict web UI access

Authentication Hardening

all

Implement strong authentication policies and disable default credentials

🧯 If You Can't Patch

  • Disable web UI access entirely if not required for operations
  • Implement strict network ACLs to limit access to device management interfaces

🔍 How to Verify

Check if Vulnerable:

Check device version against vendor advisory. Test for command injection in web UI parameters if authorized.

Check Version:

Check web UI system information page or vendor documentation for version checking

Verify Fix Applied:

Verify installed version matches patched version from vendor. Test web UI parameters for command injection.

📡 Detection & Monitoring

Log Indicators:

  • Unusual command execution in system logs
  • Multiple failed authentication attempts followed by successful login
  • Web UI access from unexpected IP addresses

Network Indicators:

  • Unusual outbound connections from ALGO devices
  • Traffic to unexpected ports from device management interface

SIEM Query:

source="algo_device" AND (event="command_execution" OR event="system_call")

📊 Metadata

CVE ID: CVE-2026-0796
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-78
EPSS Score: 0.45% exploit probability (63.2th percentile)
Published: January 23, 2026
Last Updated: February 13, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-0796, you might also want to check these:

CVE-2023-2564 10.0

This CVE describes an OS command injection vulnerability in scanservjs web scanning software that al...

Same vulnerability type (CWE-78)
CVE-2024-58338 10.0

Anevia Flamingo XL 3.2.9 contains a restricted shell escape vulnerability that allows remote attacke...

Same vulnerability type (CWE-78)
CVE-2025-26389 10.0

This critical vulnerability allows unauthenticated remote attackers to execute arbitrary code with r...

Same vulnerability type (CWE-78)