8.1

CVE-2026-1627

EPSS 0.02%
Veröffentlicht 27.02.2026 08:43:30
Zuletzt bearbeitet 05.03.2026 02:11:28
Quelle psirt@sick.de
CVE-Watchlists
Login
Unerledigt
Login

An attacker may exploit the use of outdated and weak MAC algorithms in the device’s SSH service to potentially compromise the integrity of the SSH session, allowing manipulation of transmitted data if the attacker can interact with the network traffic.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sick ≫ Lms1000 Firmware Version < 2.4.1

Sick ≫ Lms1000 Version-

Sick ≫ Mrs1000 Firmware Version < 2.4.1

Sick ≫ Mrs1000 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.038

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
psirt@sick.de	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CWE-327 Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.

https://sick.com/psirt

Vendor Advisory

https://www.cisa.gov/resources-tools/resources/ics-recommended-practices

US Government Resource

https://www.first.org/cvss/calculator/3.1

Not Applicable

https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf

Vendor Advisory

https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0005.json

Vendor Advisory

https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0005.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-1627

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-1627

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-1627

EUVD