CVE-2026-35080 | MBS Single-A prior 6_0_0_7 ugw-restoreinfo file inclusion (VDE-2026-039)

A vulnerability marked as problematic has been reported in MBS Single-A, Double-A Profibus, Double-A x-link, Single-X, Double-X CAN, Double-X DALI, Double-X KNX, Double-X LON, Double-X M-Bus, Double-X PROFINET, Double-X x-link, Triple-X KNX+DALI, Triple-X KNX+LON, Triple-X KNX+M-Bus, Triple-X PROFINET+DALI, Triple-X PROFINET+KNX, Triple-X PROFINET+LON and Triple-X PROFINET+M-Bus. This impacts the function ugw-restoreinfo. This manipulation causes file inclusion.

This vulnerability appears as CVE-2026-35080. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-35080 | MBS Single-A prior 6_0_0_7 ugw-restoreinfo file inclusion (VDE-2026-039)

Post correlati

CVE-2025-10181 | Draft List Plugin up to 2.6 on WordPress Shortcode drafts cross site scripting

CVE-2023-52714 | Huawei HarmonyOS/EMUI hwnff Module information disclosure

CVE-2024-50380 | Snap One OvrC Cloud up to 7.2 MAC Address authentication spoofing (icsa-23-136-01)

CVE-2026-2189 | itsourcecode School Management System 1.0 index.php ay sql injection