MBS Double-A Profibus
Moderate fix1 remedy
Moderate fix1 remedy
- < V6_0_0_7
MBS Universal Gateways UGW Web GUI Arbitrary File Deletion Vulnerability
Vulnerability
Patched
A vulnerability in the ugw-delete-file method allows remote attackers with user privileges to delete arbitrary local files. This issue arises from inadequate validation of user-controlled input. The vulnerability affects MBS Universal Gateways in the UGW-A-Series and UGW-X-Series, all versions prior to 6.0.0.7.
Impact
Exploitation of this vulnerability could enable an authenticated attacker to delete arbitrary local files on the affected UGW devices, potentially leading to unauthorized access or disruption of service.
Remediation
Users are advised to update to firmware version 6.0.0.7, available at the MBS Firmware Update page.
Added: Jun 3, 2026, 1:25 PM
Updated: Jun 3, 2026, 1:25 PM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
2.5exploitability
5.2remediation
0.0relevance
9.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.