EUVD-2026-26030

🗓️ 28 Apr 2026 10:24:19Reported by EUVDType

Unsecured interface on devices allows unauthenticated attackers access to hashed credentials and codes.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-3323	28 Apr 202610:24	–	attackerkb
Circl	CVE-2026-3323	22 Apr 202609:45	–	circl
CNNVD	VEGA VEGAPULS 6X 访问控制错误漏洞	28 Apr 202600:00	–	cnnvd
CVE	CVE-2026-3323	28 Apr 202610:24	–	cve
Cvelist	CVE-2026-3323 VEGA: Privilege escalation through unsecured configuration interface in VEGAPULS devices	28 Apr 202610:24	–	cvelist
NVD	CVE-2026-3323	28 Apr 202611:16	–	nvd
Positive Technologies	PT-2026-35708	28 Apr 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-3323 VEGA: Privilege escalation through unsecured configuration interface in VEGAPULS devices	28 Apr 202610:24	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "7021d2fd-8152-346a-af66-a43faf4e1348",
        "vendor": {
          "name": "VEGA Grieshaber"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "109856c7-3bb7-3019-aeea-51eb9eeaedf4",
        "product": {
          "name": "VEGAPULS 6X Two-wire PROFINET, Modbus TCP, OPC UA (Ethernet-APL)"
        },
        "product_version": "1.1.0"
      },
      {
        "id": "dc01b70b-db63-3209-ac0b-c26a99ee8d7e",
        "product": {
          "name": "VEGAPULS 6X Two-wire PROFINET, Modbus TCP, OPC UA (Ethernet-APL)"
        },
        "product_version": "1.0.0"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/en/advisories/VDE-2026-016
vega	www.vega.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-016.json

28 Apr 2026 10:24Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.17.5

EPSS0.00018

SSVC