Loading market data...
← Back to CVE feed

CVE-2026-0647

UNKNOWN View on NVD ↗

Description

An improper authentication security issue exists within the 1794-AENTR adapter's embedded web server. The vulnerability allows an unauthenticated attacker to change the device's web interface password by sending a crafted HTTP GET request to a specific endpoint, without any prior authentication being required. If exploited, this could lead to unauthorized access, account takeover, and loss of the device’s embedded web server’s availability.

Published: Jun 16, 2026 15:16 UTC Modified: Jun 16, 2026 15:26 UTC