CVE-2022-50979
Unknown
Unknown - Not Provided
Modbus RS485 Unauthorized Access Enables Configuration Disruption
Publication date: 2026-02-02
Last updated on: 2026-02-02
Assigner: CERT VDE
Description
Description
An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus (RS485).
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ids_innomic_schwingungsmesstechnik_gmbh | vibroline | From 1.4.1074 (inc) to 1.4.1116 (inc) |
| ids_innomic_schwingungsmesstechnik_gmbh | vibroline | From 1.5.1074 (inc) to 1.5.1116 (inc) |
| ids_innomic_schwingungsmesstechnik_gmbh | vibroline | From 2.1.1340 (inc) to 2.1.1387 (inc) |
| ids_innomic_schwingungsmesstechnik_gmbh | vibroline | From 2.1.1866 (inc) |
| ids_innomic_schwingungsmesstechnik_gmbh | vibroline_configurator | From 5.0.2416 (inc) to 5.0.2486 (inc) |
| ids_innomic_schwingungsmesstechnik_gmbh | vibroline_configurator | to 5.1.2730 (inc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
