CVE-2022-50979 - Vulnerability Details - OpenCVE

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus (RS485).

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.html
https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json

History

Mon, 02 Feb 2026 14:30:00 +0000

Type	Values Removed	Values Added
Description		An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus (RS485).
Title		Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated configuration preset change via Modbus (RS485)
Weaknesses		CWE-306
References		https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.html https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2026-02-02T14:10:40.182Z

Updated: 2026-02-02T14:39:08.454Z

Reserved: 2026-01-12T08:05:55.994Z

Link: CVE-2022-50979

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-02-02T15:16:28.900

Modified: 2026-02-02T15:16:28.900

Link: CVE-2022-50979

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2022-50979", "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "state": "PUBLISHED", "assignerShortName": "CERTVDE", "dateReserved": "2026-01-12T08:05:55.994Z", "datePublished": "2026-02-02T14:10:40.182Z", "dateUpdated": "2026-02-02T14:39:08.454Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX1 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX2 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX4 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX6 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX8 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX1 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX2 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX4 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX6 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLX8 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "affected", "version": "2.1.1340", "versionType": "semver"}, {"status": "affected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE1 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE2 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE4 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE6 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE8 HD 5.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE1 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE2 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE4 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE6 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "AvibiaLine AVLE8 HD 5.0", "vendor": "avibia", "versions": [{"lessThanOrEqual": "2.1.1387", "status": "unaffected", "version": "2.1.1340", "versionType": "semver"}, {"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE1 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE2 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE4 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE6 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE8 HD 5.0", "vendor": "Innomic", "versions": [{"status": "unaffected", "version": "2.1.1866"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE1 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE2 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE4 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE6 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLE8 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.4.1116", "status": "unaffected", "version": "1.4.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX1 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX2 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX4 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX6 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["firmware"], "product": "VibroLine VLX8 HD 4.0", "vendor": "Innomic", "versions": [{"lessThanOrEqual": "1.5.1116", "status": "unaffected", "version": "1.5.1074", "versionType": "semver"}]}], "datePublic": "2026-02-02T14:09:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus (RS485)."}], "value": "An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus (RS485)."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-306", "description": "CWE-306 Missing Authentication for Critical Function", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2026-02-02T14:39:08.454Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.html"}, {"tags": ["vendor-advisory"], "url": "https://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json"}], "source": {"advisory": "CERT@VDE#641933", "discovery": "UNKNOWN"}, "title": "Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated configuration preset change via Modbus (RS485)", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}