A vulnerability categorized as problematic has been discovered in MBS Single-A, Double-A Profibus, Double-A x-link, Single-X, Double-X CAN, Double-X DALI, Double-X KNX, Double-X LON, Double-X M-Bus, Double-X PROFINET, Double-X x-link, Triple-X KNX+DALI, Triple-X KNX+LON, Triple-X KNX+M-Bus, Triple-X PROFINET+DALI, Triple-X PROFINET+KNX, Triple-X PROFINET+LON and Triple-X PROFINET+M-Bus. The affected element is the function
ugw-delete-file. Executing a manipulation can lead to file inclusion.
This vulnerability is registered as CVE-2026-35077. It is possible to launch the attack remotely. No exploit is available.
It is advisable to upgrade the affected component.
