HIGH🇵🇱 Wersja polska

CVE-2026-22909

CVSS 7.5v3.1pub. 2026-01-15upd. 2026-01-23

Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Sick Tdc X401gl

    HW
    Sick
    wszystkie wersje
  • Sick Tdc X401gl Firmware

    OS
    Sick
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-22908CRITICAL9.1PL ✓ten sam produkt

Brak walidacji obrazów kontenerów w SICK TDC-X401GL — pełny dostęp do systemu

CVE-2026-22907CRITICAL9.9PL ✓ten sam produkt

Nieautoryzowany dostęp do systemu plików hosta w SICK TDC-X401GL

CVE-2026-22910HIGH7.5ten sam produkt

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasi...

CVE-2026-22912MEDIUM4.3ten sam produkt

Improper validation of a login parameter may allow attackers to redirect users to malicious websites after aut...

CVE-2026-22911MEDIUM5.3ten sam produkt

Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to r...