9.8 CVE-2026-35075
Enriched by CISA
An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.
https://nvd.nist.gov/vuln/detail/CVE-2026-35075
Categories
CWE-1393 : Use of Default Password
It is common practice for products to be designed to usedefault passwords for authentication. The rationale is tosimplify the manufacturing process or the systemadministrator's task of installation and deployment into anenterprise. However, if admins do not change the defaults,then it makes it easier for attackers to quickly bypassauthentication across multiple organizations. There are manylists of default passwords and default-password scanning toolsthat are easily available from the World Wide Web.
References
info@cert.vde.com
| https://www.certvde.com/en/advisories/VDE-2026-039/ Vendor Advisory |
AFFECTED (from MITRE)
| Vendor | Product | Versions |
|---|---|---|
| MBS | Single-A |
|
| MBS | Double-A Profibus |
|
| MBS | Double-A x-link |
|
| MBS | Single-X |
|
| MBS | Double-X CAN |
|
| MBS | Double-X DALI |
|
| MBS | Double-X KNX |
|
| MBS | Double-X LON |
|
| MBS | Double-X M-Bus |
|
| MBS | Double-X PROFINET |
|
| MBS | Double-X x-link |
|
| MBS | Triple-X KNX+DALI |
|
| MBS | Triple-X KNX+LON |
|
| MBS | Triple-X KNX+M-Bus |
|
| MBS | Triple-X PROFINET+DALI |
|
| MBS | Triple-X PROFINET+KNX |
|
| MBS | Triple-X PROFINET+LON |
|
| MBS | Triple-X PROFINET+M-Bus |
|
| © 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation. | ||
CPE
| cpe | start | end |
|---|---|---|
| Configuration 1 | ||
| AND | ||
| cpe:2.3:o:mbs-solutions:universal_gateway_firmware:*:*:*:*:*:*:*:* | < 6_00_07 | |
| Running on/with | ||
| cpe:2.3:h:mbs-solutions:double-a_profibus:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-a_x-link:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_can:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_dali:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_knx:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_lon:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_m-bus:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_profinet:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:double-x_x-link:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:single-a:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:single-x:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_knx+dali:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_knx+lon:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_knx+m-bus:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_profinet+dali:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_profinet+knx:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_profinet+lon:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mbs-solutions:triple-x_profinet+m-bus:-:*:*:*:*:*:*:* | ||
REMEDIATION
EXPLOITS
Exploit-db.com
| id | description | date | |
|---|---|---|---|
| No known exploits | |||
POC Github
| Url |
|---|
| No known exploits |
Other Nist (github, ...)
| Url |
|---|
| No known exploits |
CAPEC
Common Attack Pattern Enumerations and Classifications
| id | description | severity |
|---|---|---|
| No entry | ||
Cybersecurity needs ?
Strengthen software security from the outset with our DevSecOps expertise
Integrate security right from the start of the software development cycle for more robust applications and greater customer confidence.
Our team of DevSecOps experts can help you secure your APIs, data pipelines, CI/CD chains, Docker containers and Kubernetes deployments.
