CVE-2026-1632
Unknown
Unknown - Not Provided
Unauthenticated Access in MOMA Seismic Station Enables Remote Control
Publication date: 2026-02-03
Last updated on: 2026-02-03
Assigner: ICS-CERT
Description
Description
MOMA Seismic Station Version v2.4.2520 and prior exposes its web management interface without requiring authentication, which could allow an unauthenticated attacker to modify configuration settings, acquire device data or remotely reset the device.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| moma | seismic_station | to 2.4.2520 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability affects MOMA Seismic Station Version v2.4.2520 and earlier, where its web management interface is exposed without requiring any authentication.
This means that an attacker who is not authenticated can access the interface and potentially modify configuration settings, acquire device data, or remotely reset the device.
How can this vulnerability impact me? :
Because the web management interface does not require authentication, an unauthenticated attacker can gain control over the device.
- Modify configuration settings, potentially disrupting device operation.
- Acquire sensitive device data.
- Remotely reset the device, causing potential downtime or loss of service.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70