3 matches found
CVE-2026-26342
CVE-2026-26342 affects Tattile Smart+, Vega, and Basic device families with firmware versions prior to 1.181.5. The root cause is an authentication token (X-User-Token) with insufficient expiration, permitting an attacker with a valid token to continue authenticated access to the management inter...
CVE-2026-26341
CVE-2026-26341 affects Tattile Smart+, Vega, and Basic device families with firmware ≤ 1.181.5. The root cause is default credentials that are not forced to be changed during installation, enabling an attacker who can reach the management interface to authenticate and gain administrative access t...
CVE-2026-26340
The CVE-2026-26340 entry affects Tattile Smart+, Vega, and Basic device families on firmware versions 1.181.5 and earlier, where RTSP streams are exposed without authentication. The underlying issue is unauthenticated access to live video/audio streams, enabling unauthorized surveillance data dis...