CVE-2026-22906

Name of the Vulnerable Software and Affected Versions WAGO 0852-1322 (affected versions not specified)

Description User credentials are stored using AES-ECB encryption with a hardcoded key. An unauthenticated remote attacker obtaining the configuration file can decrypt and recover plaintext usernames and passwords. This is especially concerning when combined with an authentication bypass. The issue poses a critical cybersecurity risk, particularly for organizations in the European Union's industrial sector.

Recommendations Restrict access to the configuration file. Monitor for unauthorized access attempts. At the moment, there is no information about a newer version that contains a fix for this vulnerability.