PT-2026-28802 · Wago · Device Sphere+1
Marvin Ramsperger
·
Published
2026-03-30
·
Updated
2026-03-30
·
CVE-2026-2328
CVSS v3.1
7.5
High
| AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their intended scope via path traversal, resulting in exposure of sensitive information.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Device Sphere
Solution Builder