Primary

Context

IDS VibroLine Devices Unauthenticated Configuration Switch Vulnerability via Modbus (TCP)

Vulnerability

Patched

A vulnerability exists in IDS VibroLine devices running version 5.0 Firmware 2.1.1340 to 2.1.1387 on the VLX1, VLX2, VLX4, VLX6, and VLX8 HD 5.0 models. The issue allows an unauthenticated remote attacker to disrupt operations by switching between multiple configuration presets via Modbus (TCP). This vulnerability could be exploited by an attacker with access to the network, particularly if more than one configuration preset is active.

Impact

Exploitation of this vulnerability could lead to a denial-of-service condition, disrupting normal operations of the affected VibroLine device.

Remediation

Users can update their VibroLine VLX HD 5.0 devices to firmware version 2.1.1866 or later, which includes a fix for this vulnerability. The firmware update will require a restart of the device.

Added: Feb 2, 2026, 3:24 PM

Updated: Feb 2, 2026, 3:24 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

4.5

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

4.5

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IDS VibroLine Devices Unauthenticated Configuration Switch Vulnerability via Modbus (TCP)

Vulnerability

Impact

Remediation

Affected Products

IDS Innomic VibroLine 5.0 Firmware

IDS Innomic VibroLine Configurator 5.0

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating