Auth bypass in Anritsu Remote Spectrum Monitor Ms27100a

CVE-2026-3356

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication…

Vulnerability class: Broken Authentication

EPSS: 0.001 (22.9th percentile) — read the EPSS interpretation.

Affected products

Anritsu Remote Spectrum Monitor Ms27100a — versions All versions
Anritsu Remote Spectrum Monitor Ms27101a — versions All versions
Anritsu Remote Spectrum Monitor Ms27102a — versions All versions
Anritsu Remote Spectrum Monitor Ms27103a — versions All versions

Weakness classification (CWE)

CWE-306 — Missing Authentication for Critical Function

References

www.cisa.gov/news-events/ics-advisories/icsa-26-090-01 (government-resource)