CVE-2026-42932
Deferred Deferred - Pending Action

Predictable Naxclow Device Identifier Generation

Vulnerability report for CVE-2026-42932, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-12

Last updated on: 2026-06-16

Assigner: ICS-CERT

Description

Naxclow device identifiers use fixed manufacturing prefixes combined with sequential counters, producing a fully predictable and enumerable identifier space. Because the platform also exposes an endpoint that reveals the current identifier high-water mark, the active fleet can be enumerated.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-12
Last Modified
2026-06-16
Generated
2026-07-03
AI Q&A
2026-06-12
EPSS Evaluated
2026-07-01
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
naxclow device *
naxclow naxclow_device *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-340 The product uses a scheme that generates numbers or identifiers that are more predictable than required.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

The vulnerability in Naxclow devices arises because their device identifiers are generated using fixed manufacturing prefixes combined with sequential counters. This makes the identifier space fully predictable and enumerable. Additionally, the platform exposes an endpoint that reveals the current highest identifier in use, allowing an attacker to enumerate the entire active fleet of devices.

Impact Analysis

Because the device identifiers are predictable and enumerable, an attacker can map out all active devices in the network. This can facilitate targeted attacks such as device impersonation, interception or manipulation of communications, credential harvesting, and unauthorized access to the system. These risks can lead to compromised device integrity and unauthorized control over the affected devices.

Detection Guidance

The vulnerability involves predictable and enumerable device identifiers on Naxclow devices, with an exposed endpoint revealing the current identifier high-water mark. Detection would involve identifying network traffic or endpoints that expose these predictable identifiers or the high-water mark.

Specific commands or detection methods are not provided in the available resources.

Mitigation Strategies

Immediate mitigation steps recommended by CISA include minimizing network exposure of Naxclow devices, isolating control systems from other networks, and using secure remote access methods such as VPNs.

Additionally, implementing cybersecurity best practices is advised to reduce the risk of exploitation.

Since Naxclow did not respond to coordination attempts, users should contact the vendor for any available remediation details.

Compliance Impact

The vulnerability in Naxclow devices allows for predictable and enumerable device identifiers, which could enable attackers to impersonate devices, intercept or manipulate communications, and gain unauthorized access. Such unauthorized access and potential data interception could lead to violations of data protection and privacy requirements under common standards and regulations like GDPR and HIPAA.

Specifically, the ability to enumerate devices and potentially harvest credentials or impersonate devices increases the risk of unauthorized data exposure or manipulation, which may compromise the confidentiality and integrity of personal or sensitive information protected under these regulations.

Therefore, organizations using affected Naxclow devices may face challenges in maintaining compliance with GDPR, HIPAA, and similar standards unless they implement recommended mitigations such as minimizing network exposure, isolating control systems, and using secure remote access methods.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-42932. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart