← voltar
CVE-2022-50977

Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated configuration preset change via HTTP

CVSS 7.5 HIGHEPSS 0.4%CWE-306
An unauthenticated remote attacker could potentially disrupt operations by switching between multiple configuration presets via HTTP.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
avibia · AvibiaLine AVLE1 HD 5.0avibia · AvibiaLine AVLE2 HD 5.0avibia · AvibiaLine AVLE4 HD 5.0avibia · AvibiaLine AVLE6 HD 5.0avibia · AvibiaLine AVLE8 HD 5.0avibia · AvibiaLine AVLX1 HD 5.0avibia · AvibiaLine AVLX2 HD 5.0avibia · AvibiaLine AVLX4 HD 5.0avibia · AvibiaLine AVLX6 HD 5.0avibia · AvibiaLine AVLX8 HD 5.0Innomic · VibroLine VLE1 HD 4.0Innomic · VibroLine VLE1 HD 5.0Innomic · VibroLine VLE2 HD 4.0Innomic · VibroLine VLE2 HD 5.0Innomic · VibroLine VLE4 HD 4.0Innomic · VibroLine VLE4 HD 5.0Innomic · VibroLine VLE6 HD 4.0Innomic · VibroLine VLE6 HD 5.0Innomic · VibroLine VLE8 HD 4.0Innomic · VibroLine VLE8 HD 5.0Innomic · VibroLine VLX1 HD 4.0Innomic · VibroLine VLX1 HD 5.0Innomic · VibroLine VLX2 HD 4.0Innomic · VibroLine VLX2 HD 5.0Innomic · VibroLine VLX4 HD 4.0Innomic · VibroLine VLX4 HD 5.0Innomic · VibroLine VLX6 HD 4.0Innomic · VibroLine VLX6 HD 5.0Innomic · VibroLine VLX8 HD 4.0Innomic · VibroLine VLX8 HD 5.0

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.htmlhttps://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json