Home

Description

An unauthenticated remote attacker is able to use an existing session id of a logged in user and gain full access to the device if configuration via ethernet is enabled.

PUBLISHED Reserved 2026-01-12 | Published 2026-02-02 | Updated 2026-02-02 | Assigner CERTVDE




HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-346 Origin Validation Error

Product status

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
affected

2.1.1866
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1340 (semver)
unaffected

Default status
unaffected

2.1.1866
unaffected

Default status
unaffected

2.1.1866
unaffected

Default status
unaffected

2.1.1866
unaffected

Default status
unaffected

2.1.1866
unaffected

Default status
unaffected

2.1.1866
unaffected

Default status
unaffected

1.4.1074 (semver)
unaffected

Default status
unaffected

1.4.1074 (semver)
unaffected

Default status
unaffected

1.4.1074 (semver)
unaffected

Default status
unaffected

1.4.1074 (semver)
unaffected

Default status
unaffected

1.4.1074 (semver)
unaffected

Default status
unaffected

1.5.1074 (semver)
unaffected

Default status
unaffected

1.5.1074 (semver)
unaffected

Default status
unaffected

1.5.1074 (semver)
unaffected

Default status
unaffected

1.5.1074 (semver)
unaffected

Default status
unaffected

1.5.1074 (semver)
unaffected

References

www.innomic.com/...-known/csaf/white/2026/ids-2026-0001.html vendor-advisory

www.innomic.com/...-known/csaf/white/2026/ids-2026-0001.json vendor-advisory

cve.org (CVE-2022-50975)

nvd.nist.gov (CVE-2022-50975)

Download JSON