CVE-2026-24060CRITICAL 9.1EPSS p9.8%

CVE-2026-24060CVE-2026-24060

Description

Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. The proprietary format used by WebCTRL to receive updates from the PLC can also be sniffed and reverse engineered.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.20% probability of exploitation · percentile 9.8% · 2026-06-18T12:00:27Z
Published2026-03-21
Last modified2026-03-23

Underlying weaknesses· 1

CWE-319

References

  1. https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-078-08.json
  2. https://www.automatedlogic.com/en/company/security-commitment/
  3. https://www.cisa.gov/news-events/ics-advisories/icsa-26-078-08

1

TypeTargetConfidenceTier
WeaknessCleartext Transmission of Sensitive Informationcwe-3190%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-13926
CVE
CVE-2025-48466
CVE
CVE-2025-40943
CVE
CVE-2026-24790
CVE
CVE-2025-41765
CVE
CVE-2026-4436
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.