Wago · Device Sphere · CVE-2026-2328
**Name of the Vulnerable Software and Affected Versions**
(affected versions not specified)
**Description**
An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their intended scope via path traversal, resulting in exposure of sensitive information. This issue involves accessing resources outside of the expected directory structure due to inadequate validation of user-supplied input. The attack leverages path traversal techniques to bypass security measures and gain unauthorized access to sensitive data.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.