CVE-2022-50975 - Vulnerability Details - OpenCVE

An unauthenticated remote attacker is able to use an existing session id of a logged in user and gain full access to the device if configuration via ethernet is enabled.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.html
https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json

History

Mon, 02 Feb 2026 14:30:00 +0000

Type	Values Removed	Values Added
Description		An unauthenticated remote attacker is able to use an existing session id of a logged in user and gain full access to the device if configuration via ethernet is enabled.
Title		Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated access to device configuration
Weaknesses		CWE-346
References		https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.html https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2026-02-02T14:07:32.421Z

Updated: 2026-02-02T14:34:39.543Z

Reserved: 2026-01-12T08:05:55.994Z

Link: CVE-2022-50975

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-02-02T15:16:27.933

Modified: 2026-02-02T15:16:27.933

Link: CVE-2022-50975

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2022-50975", "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "state": "PUBLISHED", "assignerShortName": "CERTVDE", "dateReserved": "2026-01-12T08:05:55.994Z", "datePublished": "2026-02-02T14:07:32.421Z", "dateUpdated": "2026-02-02T14:34:39.543Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX1 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX2 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX4 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX6 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX8 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX1 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX2 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX4 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX6 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX8 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE1 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE2 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE4 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE6 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE8 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE1 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE2 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE4 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE6 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE8 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE1 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE2 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE4 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE6 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE8 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE1 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE2 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE4 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE6 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE8 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX1 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX2 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX4 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX6 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX8 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}], "datePublic": "2026-02-02T14:06:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An unauthenticated remote attacker is able to use an existing session id of a logged in user and gain full access to the device if configuration via ethernet is enabled.<br>"}], "value": "An unauthenticated remote attacker is able to use an existing session id of a logged in user and gain full access to the device if configuration via ethernet is enabled."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-346", "description": "CWE-346 Origin Validation Error", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2026-02-02T14:34:39.543Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.html"}, {"tags": ["vendor-advisory"], "url": "https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json"}], "source": {"advisory": "CERT@VDE#641933", "discovery": "EXTERNAL"}, "title": "Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated access to device configuration", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}