← back
CVE-2022-50980

Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated configuration preset change via CAN

CVSS 6.5 MEDIUMEPSS 0.2%CWE-306
A unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via CAN.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
avibia · AvibiaLine AVLE1 HD 5.0avibia · AvibiaLine AVLE2 HD 5.0avibia · AvibiaLine AVLE4 HD 5.0avibia · AvibiaLine AVLE6 HD 5.0avibia · AvibiaLine AVLE8 HD 5.0avibia · AvibiaLine AVLX1 HD 5.0avibia · AvibiaLine AVLX2 HD 5.0avibia · AvibiaLine AVLX4 HD 5.0avibia · AvibiaLine AVLX6 HD 5.0avibia · AvibiaLine AVLX8 HD 5.0Innomic · VibroLine VLE1 HD 4.0Innomic · VibroLine VLE1 HD 5.0Innomic · VibroLine VLE2 HD 4.0Innomic · VibroLine VLE2 HD 5.0Innomic · VibroLine VLE4 HD 4.0Innomic · VibroLine VLE4 HD 5.0Innomic · VibroLine VLE6 HD 4.0Innomic · VibroLine VLE6 HD 5.0Innomic · VibroLine VLE8 HD 4.0Innomic · VibroLine VLE8 HD 5.0Innomic · VibroLine VLX1 HD 4.0Innomic · VibroLine VLX1 HD 5.0Innomic · VibroLine VLX2 HD 4.0Innomic · VibroLine VLX2 HD 5.0Innomic · VibroLine VLX4 HD 4.0Innomic · VibroLine VLX4 HD 5.0Innomic · VibroLine VLX6 HD 4.0Innomic · VibroLine VLX6 HD 5.0Innomic · VibroLine VLX8 HD 4.0Innomic · VibroLine VLX8 HD 5.0

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.htmlhttps://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json