CRITICAL🇵🇱 Wersja polska

CVE-2026-22908

CVSS 9.1v3.1pub. 2026-01-15upd. 2026-01-23

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Sick Tdc X401gl

    HW
    Sick
    wszystkie wersje
  • Sick Tdc X401gl Firmware

    OS
    Sick
    < 1.4.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Container
CWE
References

Related vulnerabilities

CVE-2026-22907CRITICAL9.9PL ✓ten sam produkt

Nieautoryzowany dostęp do systemu plików hosta w SICK TDC-X401GL

CVE-2026-22910HIGH7.5ten sam produkt

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasi...

CVE-2026-22909HIGH7.5ten sam produkt

Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or d...

CVE-2026-22912MEDIUM4.3ten sam produkt

Improper validation of a login parameter may allow attackers to redirect users to malicious websites after aut...

CVE-2026-22911MEDIUM5.3ten sam produkt

Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to r...