Tdc-x401gl CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (9 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-22917	1 Sick Ag	1 Tdc-x401gl	2026-01-16	4.3 Medium
Improper input handling in a system endpoint may allow attackers to overload resources, causing a denial of service.
CVE-2026-22907	1 Sick Ag	1 Tdc-x401gl	2026-01-16	9.9 Critical
An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data.
CVE-2026-22920	1 Sick Ag	1 Tdc-x401gl	2026-01-16	3.7 Low
The device's passwords have not been adequately salted, making them vulnerable to password extraction attacks.
CVE-2026-22916	1 Sick Ag	1 Tdc-x401gl	2026-01-16	4.3 Medium
An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentially leading to service disruption or loss of configuration.
CVE-2026-22909	1 Sick Ag	1 Tdc-x401gl	2026-01-16	7.5 High
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations.
CVE-2026-22910	1 Sick Ag	1 Tdc-x401gl	2026-01-16	7.5 High
The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represents a high risk to the integrity of the system.
CVE-2026-22911	1 Sick Ag	1 Tdc-x401gl	2026-01-16	5.3 Medium
Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to recover credentials and gain unauthorized access to the device.
CVE-2026-22915	1 Sick Ag	1 Tdc-x401gl	2026-01-16	4.3 Medium
An attacker with low privileges may be able to read files from specific directories on the device, potentially exposing sensitive information.
CVE-2026-22919	1 Sick Ag	1 Tdc-x401gl	2026-01-16	3.8 Low
An attacker with administrative access may inject malicious content into the login page, potentially enabling cross-site scripting (XSS) attacks, leading to the extraction of sensitive data.

Page 1 of 1.