CVE-2026-24060
Received Received - Intake
Unencrypted BACnet Traffic in WebCTRL Enables Data Interception

Publication date: 2026-03-21

Last updated on: 2026-03-23

Assigner: ICS-CERT

Description
Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. The proprietary format used by WebCTRL to receive updates from the PLC can also be sniffed and reverse engineered.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-21
Last Modified
2026-03-23
Generated
2026-06-16
AI Q&A
2026-03-21
EPSS Evaluated
2026-06-15
NVD
CVE-2026-24060
EUVD
EUVD-2026-13840
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-319 The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability involves the transmission of service information as BACnet packets over the network without encryption. Because the data is sent in clear text, an attacker can sniff, intercept, and modify the information being transmitted.

Specifically, sensitive details such as the File Start Position and File Data can be captured from network traffic using tools like Wireshark with its BACnet dissector filter. Additionally, the proprietary format used by WebCTRL to receive updates from the PLC can be intercepted and reverse engineered by an attacker.

Impact Analysis

The vulnerability can lead to serious security risks because attackers can capture and modify sensitive information transmitted over the network.

  • Confidential information such as file positions and data can be exposed.
  • Attackers can manipulate the intercepted data, potentially causing unauthorized changes or disruptions.
  • Reverse engineering of proprietary formats may allow attackers to better understand and exploit the system.
Compliance Impact

I don't know

Detection Guidance

This vulnerability can be detected by monitoring network traffic for unencrypted BACnet packets. Tools like Wireshark can be used with the BACnet dissector filter to sniff and analyze BACnet packets, revealing sensitive information such as File Start Position and File Data.

  • Use Wireshark with the BACnet dissector filter to capture and inspect BACnet traffic.
  • Look for unencrypted service information transmitted over the network.
Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-24060. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart