Vulnerability Details CVE-2026-35075
An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.5%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2026-35075
-
cpe:2.3:h:mbs-solutions:double-a_profibus:-
-
cpe:2.3:h:mbs-solutions:double-a_x-link:-
-
cpe:2.3:h:mbs-solutions:double-x_can:-
-
cpe:2.3:h:mbs-solutions:double-x_dali:-
-
cpe:2.3:h:mbs-solutions:double-x_knx:-
-
cpe:2.3:h:mbs-solutions:double-x_lon:-
-
cpe:2.3:h:mbs-solutions:double-x_m-bus:-
-
cpe:2.3:h:mbs-solutions:double-x_profinet:-
-
cpe:2.3:h:mbs-solutions:double-x_x-link:-
-
cpe:2.3:h:mbs-solutions:single-a:-
-
cpe:2.3:h:mbs-solutions:single-x:-
-
cpe:2.3:h:mbs-solutions:triple-x_knx+dali:-
-
cpe:2.3:h:mbs-solutions:triple-x_knx+lon:-
-
cpe:2.3:h:mbs-solutions:triple-x_knx+m-bus:-
-
cpe:2.3:h:mbs-solutions:triple-x_profinet+dali:-
-
cpe:2.3:h:mbs-solutions:triple-x_profinet+knx:-
-
cpe:2.3:h:mbs-solutions:triple-x_profinet+lon:-
-
cpe:2.3:h:mbs-solutions:triple-x_profinet+m-bus:-
-
cpe:2.3:o:mbs-solutions:universal_gateway_firmware:*