Device Control System Can Be Remotely Manipulated

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.2

Device Control System Can Be Remotely Manipulated

CVE-2026-24790

Summary

The control system of a device can be taken over by an attacker, allowing them to potentially disrupt or compromise operations. This is a concern for businesses that rely on these devices for critical functions. To mitigate this, ensure that the device's control system is properly secured and authenticated.

Original title

The underlying PLC of the device can be remotely influenced, without proper safeguards or authentication.

Original description

The underlying PLC of the device can be remotely influenced, without proper safeguards or authentication.

nvd CVSS3.1 8.2

Vulnerability type

CWE-306 Missing Authentication for Critical Function

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-05...
https://www.cisa.gov/news-events/ics-advisories/icsa-26-050-04
https://www.welker.com/contact-us/welker-team

Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026