CVE-2026-1626

EPSS 0.02%
Veröffentlicht 27.02.2026 08:40:53
Zuletzt bearbeitet 05.03.2026 02:13:42
Quelle psirt@sick.de
CVE-Watchlists
Login
Unerledigt
Login

An attacker may exploit the use of weak CBC-based cipher suites in the device’s SSH service to potentially observe or manipulate parts of the encrypted SSH communication, if they are able to intercept or interact with the network traffic.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sick ≫ Lms1000 Firmware Version < 2.4.1

Sick ≫ Lms1000 Version-

Sick ≫ Mrs1000 Firmware Version < 2.4.1

Sick ≫ Mrs1000 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.038

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
psirt@sick.de	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-327 Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.

https://sick.com/psirt

Vendor Advisory

https://www.cisa.gov/resources-tools/resources/ics-recommended-practices

US Government Resource

https://www.first.org/cvss/calculator/3.1

Not Applicable

https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf

Vendor Advisory

https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0005.json

Vendor Advisory

https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0005.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-1626

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-1626

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-1626

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-1626