Vulnerability Description
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations.
CVSS Score
7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sick | Tdc-X401Gl Firmware | All versions |
| Sick | Tdc-X401Gl | - |
Related Weaknesses (CWE)
References
- https://sick.com/psirtVendor Advisory
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practicesUS Government Resource
- https://www.first.org/cvss/calculator/3.1Not Applicable
- https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.jsonVendor Advisory
- https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.pdfVendor Advisory
- https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidProduct
FAQ
What is CVE-2026-22909?
CVE-2026-22909 is a vulnerability with a CVSS score of 7.5 (HIGH). Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations.
How severe is CVE-2026-22909?
CVE-2026-22909 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-22909?
Check the references section above for vendor advisories and patch information. Affected products include: Sick Tdc-X401Gl Firmware, Sick Tdc-X401Gl.