CRITICAL🇵🇱 Wersja polska

CVE-2026-22907

CVSS 9.9v3.1pub. 2026-01-15upd. 2026-01-23

An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data.

🤖 AI Analysis
How it works

An attacker with low-level privileges, acting remotely over the network, can gain unauthorized access to the host file system of the device. The vulnerability does not require user interaction or complex attack conditions (low complexity level). The scope of the attack extends beyond the context of the vulnerable component (S:C), indicating the possibility of impact on resources outside the original execution environment.

Impact

An attacker can read and modify system data on the host, which may lead to a breach of confidentiality, integrity, and availability of the system. In industrial environments, this can result in disruption of device operation or escalation of attacks on further infrastructure.

Mitigation & patch

Patches available from the manufacturer should be applied in accordance with the references (https://sick.com/psirt and document SCA-2026-0001). It is also recommended to apply ICS guidelines published by CISA regarding best practices for industrial system security.

Who is affected

SICK TDC-X401GL devices and their firmware — specific versions indicated in manufacturer references (SCA-2026-0001).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Sick Tdc X401gl

    HW
    Sick
    wszystkie wersje
  • Sick Tdc X401gl Firmware

    OS
    Sick
    < 1.4.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-22908CRITICAL9.1PL ✓ten sam produkt

Brak walidacji obrazów kontenerów w SICK TDC-X401GL — pełny dostęp do systemu

CVE-2026-22910HIGH7.5ten sam produkt

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasi...

CVE-2026-22909HIGH7.5ten sam produkt

Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or d...

CVE-2026-22912MEDIUM4.3ten sam produkt

Improper validation of a login parameter may allow attackers to redirect users to malicious websites after aut...

CVE-2026-22911MEDIUM5.3ten sam produkt

Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to r...