Threat Advisory

Intrado 911 Emergency Gateway Vulnerability Exposed

Threat: Vulnerability
Targeted Region: Global
Targeted Sector: Critical Infrastructure, Government & Defense
Criticality: Critical
[subscribe_to_unlock_form]

EXECUTIVE SUMMARY:

Multiple security vulnerabilities have been identified in the Intrado 911 Emergency Gateway (EGW) software and hardware, affecting multiple generations of the system. The vulnerabilities are primarily related to "path traversal" conditions, which can be exploited by attackers with existing network access to bypass authentication and gain full read, modify, or delete permissions over sensitive system files. This poses a significant business risk, as it could lead to the permanent loss of configuration data, theft of sensitive emergency logs, or complete disruption of life-saving 911 services. The simplicity of the exploit and widespread impact of the vulnerability make it a pressing concern for organizations relying on the EGW system.[/subscribe_to_unlock_form]

EXECUTIVE SUMMARY:

Multiple security vulnerabilities have been identified in the Intrado 911 Emergency Gateway (EGW) software and hardware, affecting multiple generations of the system. The vulnerabilities are primarily related to "path traversal" conditions, which can be exploited by attackers with existing network access to bypass authentication and gain full read, modify, or delete permissions over sensitive system files. This poses a significant business risk, as it could lead to the permanent loss of configuration data, theft of sensitive emergency logs, or complete disruption of life-saving 911 services. The simplicity of the exploit and widespread impact of the vulnerability make it a pressing concern for organizations relying on the EGW system.[emaillocker id="1283"]

  • CVE-2026-6074 with a CVSS score of 9.8 – A path traversal condition in Intrado 911 Emergency Gateway could allow an attacker with existing network access the ability to access the EGW management interface without authentication. This can be exploited by navigating outside of intended folders to reach restricted areas of the system. The attacker gains full read, modify, or delete permissions over sensitive system files.
  • CVE-2026-42208 – An actively exploited vulnerability has been detected in the Intrado 911 Emergency Gateway, which can be used by attackers to bypass the standard login process entirely. This vulnerability is considered critical and poses a significant risk to organizations relying on the EGW system.

The discovery of this critical vulnerability in the Intrado 911 Emergency Gateway poses a pressing concern for organizations relying on the EGW system. The risk of permanent loss of configuration data, theft of sensitive emergency logs, or complete disruption of life-saving 911 services is significant. It is essential for these organizations to verify their version immediately and apply the necessary updates to secure their emergency infrastructure.

RECOMMENDATION:

  • We recommend that you update Intrado 911 Emergency Gateway to version 5.5.6 or later, as available.

REFERENCES:

The following reports contain further technical details:
https://securityonline.info/intrado-911-emergency-gateway-vulnerability-cve-2026-6074/

[/emaillocker]
crossmenu