MBS Double-A Profibus
Moderate fix1 remedy
Moderate fix1 remedy
- < V6_0_0_7
MBS Universal Gateway Stack-Based Buffer Overflow Vulnerability Allowing Root Code Execution
Vulnerability
Patched
A stack-based buffer overflow vulnerability has been identified in the MBS Universal Gateway (UGW) web GUI, specifically in the UGW-A-Series and UGW-X-Series models, all running MBS Firmware prior to V6_0_0_7. This vulnerability allows remote attackers with user privileges to execute arbitrary code with root privileges, potentially leading to a full system compromise. The issue arises from several CGI methods that lack proper input validation and bounds checking, enabling authorized attackers to exploit the buffer overflow.
Impact
Exploitation of this vulnerability allows authenticated attackers to perform stack-based buffer overflows, executing arbitrary code with root privileges and potentially compromising the entire system.
Remediation
Users are advised to update to MBS Firmware version V6_0_0_7, available at the MBS Firmware Update page.
Added: Jun 3, 2026, 1:26 PM
Updated: Jun 3, 2026, 1:26 PM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
2.5exploitability
5.2remediation
0.0relevance
9.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.