CVE-2026-4436

Name of the Vulnerable Software and Affected Versions versions not specified

Description A remote attacker with low privileges can manipulate Modbus register values used in odorant injection logic, potentially causing over or under-injection of odorant into a gas line. Attackers have exploited this issue to send unauthorized Modbus commands to GPL750 odorizer devices, manipulating odorant injection levels in gas pipelines. The lack of authentication allows for potential lateral movement within industrial networks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.