CVE-2026-3893

· NIST NVD ↗

The Carlson VASCO-B GNSS Receiver lacks an authentication mechanism, allowing an attacker with network access to directly access and modify its configuration and operational functions without needing credentials.

CRITICAL
CVSS severity
9.4
CVSS base score
2026-04-28
Published

CWE codes

CWE-306

Sources