All CISA Advisories, EN

RISS SRL MOMA Seismic Station

View CSAF

Summary

Successful exploitation of this vulnerability could result in an unauthenticated attacker creating a denial-of-service condition.

The following versions of RISS SRL MOMA Seismic Station are affected:

  • MOMA Seismic Station <=v2.4.2520 (CVE-2026-1632)
CVSS Vendor Equipment Vulnerabilities
v3 9.1 RISS SRL RISS SRL MOMA Seismic Station Missing Authentication for Critical Function

Background

  • Critical Infrastructure Sectors: Critical Manufacturing, Dams, Energy, Water and Wastewater, Transportation Systems
  • Countries/Areas Deployed: Worldwide
  • Company Headquarters Location: Italy

Vulnerabilities

Expand All +

CVE-2026-1632

MOMA Seismic Station Version v2.4.2520 and prior exposes its web management interface without requiring authentication, which could allow an unauthenticated attacker to modify configuration settings, acquire device data or remotely reset the device.

View CVE Details

Affected Products

RISS SRL MOMA Seismic Station
Vendor:
RISS SRL
Product Version:
RISS SRL MOMA Seismic Station: <=v2.4.2520
Product Status:
known_affected
Remediations

Vendor fix
RISS SRL did not respond to CISA’s request for coordination. Users of RISS MOMA Seismic Station are encouraged to contact RISS SRL (info@riss-srl.com) for more information.

Relevant CWE: This article has been indexed from All CISA Advisories

Read the original article: