Improper validation of a login parameter may allow attackers to redirect users to malicious websites after authentication. This can lead to various risk including stealing credentials from unsuspecting users.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NSick Tdc X401gl
HWSickwszystkie wersjeSick Tdc X401gl Firmware
OSSick< 1.5.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2026-22908CRITICAL9.1PL ✓ten sam produkt
Brak walidacji obrazów kontenerów w SICK TDC-X401GL — pełny dostęp do systemu
CVE-2026-22907CRITICAL9.9PL ✓ten sam produkt
Nieautoryzowany dostęp do systemu plików hosta w SICK TDC-X401GL
CVE-2026-22909HIGH7.5ten sam produkt
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or d...
CVE-2026-22910HIGH7.5ten sam produkt
The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasi...
CVE-2026-22911MEDIUM5.3ten sam produkt
Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to r...