Volerion logoVolerion
Volerion logoVolerion

IDS Innomic VibroLine Devices Unintended Device Reset Vulnerability

Vulnerability

A vulnerability exists in VibroLine devices running version 5.0 of the Configurator, specifically in the range of 2.1.1340 to 2.1.2486. This vulnerability allows a local attacker to cause a full device reset by using an invalid password reset file via USB. The issue arises from improper validation of input consistency, leading to unintended consequences when the device processes the invalid reset file.

Impact

Exploitation of this vulnerability leads to an unauthorized full device reset, causing all device passwords to be reset and potentially disrupting normal device operations.

Remediation

Users can update the VibroLine Configurator to version 5.1.2730 or later, which includes a fix for this vulnerability. Instructions for downloading the update are available on the IDS Innomic website.

Added: Feb 2, 2026, 3:28 PM
Updated: Feb 2, 2026, 3:28 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
1.7
exploitability
3.3
remediation
0.0
relevance
2.4
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.