CVE-2026-22909
CRITICAL WAF: Low
CVSS 9.1
Published: 2026-01-15
CWE-863
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations.
WAF Coverage Analysis
Incorrect Authorization
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| sick | tdc-x401gl_firmware | all versions |
References
- sick.com (Vendor Advisory)
- www.cisa.gov (US Government Resource)
- www.first.org (Not Applicable)
- www.sick.com (Vendor Advisory)
- www.sick.com (Vendor Advisory)
- www.sick.com (Product)