Vulnerability Details CVE-2026-22918
An attacker may exploit missing protection against clickjacking by tricking users into performing unintended actions through maliciously crafted web pages, leading to the extraction of sensitive data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 15.4%
CVSS Severity
CVSS v3 Score 4.3
References
- https://sick.com/psirt
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
- https://www.first.org/cvss/calculator/3.1
- https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.json
- https://www.sick.com/.well-known/csaf/white/2026/sca-2026-0001.pdf
- https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf
Products affected by CVE-2026-22918
-
cpe:2.3:h:sick:tdc-x401gl:-
-
cpe:2.3:o:sick:tdc-x401gl_firmware:*