ByteOS Network

EnOcean Edge Inc

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2026-22885

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-3.7||LOW

EPSS-0.05% / 16.06%

7 Day CHG~0.00%

Published-20 Feb, 2026 | 15:35

Updated-20 Feb, 2026 | 20:06

EnOcean SmartServer IoT Out-of-bounds Read

A vulnerability exists in EnOcean SmartServer IoT version 4.60.009 and prior, which would allow remote attackers, in the LON IP-852 management messages, to send specially crafted IP-852 messages resulting in a memory leak from the program's memory.

Vendor-EnOcean Edge Inc

Product-SmartServer IoT

CWE ID-CWE-125

Out-of-bounds Read

CVE-2026-20761

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-8.1||HIGH

EPSS-0.33% / 55.75%

7 Day CHG~0.00%

Published-20 Feb, 2026 | 15:32

Updated-20 Feb, 2026 | 20:09

EnOcean SmartServer IoT Command Injection

Vendor-EnOcean Edge Inc

Product-SmartServer IoT

CWE ID-CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')