Home / Vulnerability Intelligence / CVE-2026-21660

CVE-2026-21660 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: March 2, 2026

Frick Controls Quantum HD - Hardcoded Credentials

Published: February 27, 2026Updated: March 2, 2026Remote Exploitable

Overview

Frick Controls Quantum HD <= 10.22 contains a plaintext password storage vulnerability caused by hardcoded email credentials in firmware, letting attackers gain unauthorized access and expose sensitive information, exploit requires firmware access.

Severity & Score

Severity: Critical

CVSS Score: 9.8

EPSS Score: 3.3%(Probability of exploitation in next 30 days)

Impact

Attackers can gain unauthorized access and expose sensitive information, potentially leading to system compromise.

Mitigation

Update to a version later than 10.22 or the latest available version.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 2, 2026

🔴 CVE-2026-21660 - Critical (9.8) Hardcoded Email Credentials Saved as Plaintext in Firmware (CWE-256: Plaintext Storage of a Password) vulnerability in Frick Controls Quantum HD version 10.22 and prior lead to unauthorized access, exposure of sensitive information, and potential... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21660/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-21660
Severity: Critical
CVSS Score: 9.8
Type: hardcoded_credentials
Status: confirmed
EPSS: 3.3%
Social Posts: 1

CWE

CWE-256
CWE-522

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

3.3%Probability of exploitation in the next 30 days