CVE-2026-22912 MEDIUM

CVE-2026-22912

Vendor Sick Ag
Product TDC-X401GL
Weakness CWE-601 · Open redirect
Published January 15, 2026
Last update January 15, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Improper validation of a login parameter may allow attackers to redirect users to malicious websites after authentication. This can lead to various risk including stealing credentials from unsuspecting users.

Key dates

02Disclosure timeline

January 15, 2026 CVE published
January 15, 2026 Record updated

Related vulnerabilities

04Related CVE