CVE-2026-22918 MEDIUM

CVE-2026-22918

Vendor Sick Ag
Product TDC-X401GL
Weakness CWE-1021
Published January 15, 2026
Last update January 15, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

An attacker may exploit missing protection against clickjacking by tricking users into performing unintended actions through maliciously crafted web pages, leading to the extraction of sensitive data.

Key dates

02Disclosure timeline

January 15, 2026 CVE published
January 15, 2026 Record updated