CVE-2026-3323 | VEGA Grieshaber VEGAPULS 6X Two-wire PROFINET/Modbus TCP/OPC UA Configuration Interface missing authentication (VDE-2026-016)

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability has been found in VEGA Grieshaber VEGAPULS 6X Two-wire PROFINET, Modbus TCP and OPC UA and classified as critical. This issue affects some unknown processing of the component Configuration Interface. The manipulation leads to missing authentication.

This vulnerability is uniquely identified as CVE-2026-3323. The attack is possible to be carried out remotely. No exploit exists.

It is recommended to apply restrictive firewalling.

CVE-2026-3323 | VEGA Grieshaber VEGAPULS 6X Two-wire PROFINET/Modbus TCP/OPC UA Configuration Interface missing authentication (VDE-2026-016)

Post correlati

CVE-2024-23182 | appleple A-Blog CMS up to 2.8.x/2.10.49/2.11.57/3.0.28/3.1.6 path traversal

CVE-2023-50339 | WESEEK GROWI up to 6.1.10 User Management Page /admin/users cross site scripting

CVE-2024-44856 | Open Robotics ROS2 nav2_smac_planner null pointer dereference (ID 4468)

CVE-2024-8882 | Zyxel GS1900-48 up to V2.80(AAHN.1)C0 URL buffer overflow