Security Advisory

CVE-2026-22644

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-15 13:14:13

Last updated 2026-01-15 14:52:44

Assigner SICK AG

State PUBLISHED

Description

Certain requests pass the authentication token in the URL as string query parameter, making it vulnerable to theft through server logs, proxy logs and Referer headers, which could allow an attacker to hijack the users session and gain unauthorized access.

← Browse all CVEs View on cve.org ↗