Skip to main content

Unknown ICS device CVE-2026-49033

| EUVDEUVD-2026-42122 HIGH
Stack-based Buffer Overflow (CWE-121)
2026-07-07 ics-cert@hq.dhs.gov GHSA-h3p7-vr3q-c8g3
8.4
CVSS 4.0 · Vendor: hq
Share

Severity by source

Vendor (hq) PRIMARY
8.4 HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
7.8 HIGH

Local vector and required user interaction to process malicious input, no privileges needed, and a stack overflow yielding full code execution give C/I/A:H with unchanged scope.

3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
4.0 AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (hq).

CVSS VectorVendor: hq

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
A
Scope
X

Lifecycle Timeline

1
Analysis Generated
Jul 07, 2026 - 22:34 vuln.today

DescriptionCVE.org

The application contains a stack-based buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code.

AnalysisAI

Local arbitrary code execution affects an unspecified industrial control system (ICS) product reported through CISA ICS-CERT (advisory ICSA-26-188-06). A stack-based buffer overflow (CWE-121) lets an attacker who can supply crafted input trigger memory corruption and run arbitrary code once a local user interacts with the malicious data, fully compromising confidentiality, integrity, and availability. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Craft malicious ICS input file
Delivery
Deliver to operator via email or share
Exploit
User opens file in application
Execution
Overflow fixed-size stack buffer
Persist
Overwrite saved return address
Impact
Execute arbitrary code in user context

Vulnerability AssessmentAI

Exploitation Exploitation requires local delivery of attacker-controlled input to the vulnerable ICS application (AV:L) and active interaction by a legitimate user (UI:A) - for example an operator opening, importing, or processing a crafted project/configuration/device data file. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 base score is 8.4 (High) with vector AV:L/AC:L/AT:N/PR:N/UI:A and full VC/VI/VA:H impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker crafts a malicious project file, configuration file, or device response containing an oversized field and delivers it to an engineer (via email, shared drive, or a rogue device on the network). When the operator opens or imports the data in the vulnerable ICS application, the stack buffer overflows and the attacker's code runs in the user's context on the engineering workstation. …
Remediation No vendor-released patch version is identified in the provided data; consult CISA ICS advisory ICSA-26-188-06 (https://www.cisa.gov/news-events/ics-advisories/icsa-26-188-06) for the vendor's fixed version and official guidance, and apply the vendor update as the primary fix once identified. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Contact your ICS vendor and product teams to determine if this vulnerability affects any deployed systems; enable enhanced logging on any confirmed affected systems. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-49033 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy