PT-2026-6050 · Unknown · Moma Seismic Station
Souvik Kandar
·
Published
2026-02-03
·
Updated
2026-02-04
·
CVE-2026-1632
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
MOMA Seismic Station versions v2.4.2520 and prior
Description
The MOMA Seismic Station web management interface does not require authentication. This allows an unauthenticated attacker to modify configuration settings, obtain device data, or remotely reset the device. The issue poses a risk of complete remote takeover of the device.
Recommendations
Versions prior to v2.4.2520 should be updated.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Moma Seismic Station