An unauthenticated remote attacker is able to use an existing session id of a logged in user and gain full access to the device if configuration via ethernet is enabled.Referenceshttps://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.htmlhttps://www.innomic.com/.well-known/csaf/white/2026/ids-2026-0001.json
