Vulnerability Details CVE-2026-1626
An attacker may exploit the use of weak CBC-based cipher suites in the device’s SSH service to potentially observe or manipulate parts of the encrypted SSH communication, if they are able to intercept or interact with the network traffic.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.2%
CVSS Severity
CVSS v3 Score 6.5
References
- https://sick.com/psirt
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
- https://www.first.org/cvss/calculator/3.1
- https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0005.json
- https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0005.pdf
- https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf
Products affected by CVE-2026-1626
-
cpe:2.3:h:sick:lms1000:-
-
cpe:2.3:h:sick:mrs1000:-
-
cpe:2.3:o:sick:lms1000_firmware:*
-
cpe:2.3:o:sick:mrs1000_firmware:*