BetaIT-Hub is in early access — your feedback helps us improve. Use the chat or email [email protected]

News Vulnerability
VulnerabilityCISA·55d ago

GPL Odorizers GPL750

p a href= https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-099-02.json strong View CSAF /strong /a /p h2 Summary /h2 p strong Successful exploitation of this vulnerability could allow a low privileged remote attacker to manipulate register values, which would result in too much or too little odorant being injected into a gas line. /strong /p p The following versions of GPL Odorizers GPL750 are affected: /p ul li GPL750 (XL4) gt;=v1.0| /li li GPL750 (XL4 Prime) gt;=v4.0| /li li GPL750 (XL7) gt;=v13.0| /li li GPL750 (XL7 Prime) gt;=v18.4| /li /ul div class= csaf-table table class= tablesaw tablesaw-stack data-tablesaw-mode= stack data-tablesaw-minimap thead tr th role= columnheader data-tablesaw-priority= persist CVSS /th th role= columnheader Vendor /th th role= columnheader Equipment /th th role= columnheader Vulnerabilities /th /tr /thead tbody tr td v3 8.6 /td td GPL Odorizers /td td GPL Odorizers GPL750 /td td Missing Authentication for Critical Function /td /tr /tbody /table /div h3 Background /h3 ul li strong Critical Infrastructure Sectors: /strong Critical Manufacturing /li li strong Countries/Areas Deployed: /strong Worldwide /li li strong Company Headquarters Location: /strong United States /li /ul hr h2 Vulnerabilities /h2 div class= csaf-accordion p a class= csaf-accordion-toggle-all href= # Expand All + /a /p div class= csaf-accordion-item h3 a class= csaf-accordion-toggle href= # CVE-2026-4436 /a /h3 div class= csaf-accordion-content p A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line. /p p a href= https://www.cve.org/CVERecord?id=CVE-2026-4436 View CVE Details /a /p hr h4 Affected Products /h4 h5 GPL Odorizers GPL750 /h5 div class= ics-vendor-version-status div class= ics-vendor strong Vendor: /strong br GPL Odorizers /div div class= ics-version strong Product Version: /strong br GPL Odorizers GPL750 (XL4): gt;=v1.0| lt;v6.0, GPL Odorizers GPL750 (XL4 Prime): gt;=v4.0| lt;v6.0, GPL Odorizers GPL750 (XL7): gt;=v13.0| lt;v20.0, GPL Odorizers GPL750 (XL7 Prime): gt;=v18.4| lt;v20.0 /div div class= ics-status strong Product Status: /strong br known_affected /div /div div class= ics-remediations h6 Remediations /h6 p strong Mitigation /strong br GPL Odorizers recommends users update to the latest software version of the GPL750 in connection with the latest firmware from Horner Automation for the XL4, XL4 Prime, XL7, and XL7 Prime devices.https://lincenergysystems-my.sharepoint.com/:f:/p/h_baer/IgDYaHIhXpyLQJvnKPd6b80TAUgV7Lp8qmVYBFUb0lmr7ak?e=JLeADm. br a href= https://lincenergysystems-my.sharepoint.com/:f:/p/h_baer/IgDYaHIhXpyLQJvnKPd6b80TAUgV7Lp8qmVYBFUb0lmr7ak?e=JLeADm https://lincenergysystems-my.sharepoint.com/:f:/p/h_baer/IgDYaHIhXpyLQJvnKPd6b80TAUgV7Lp8qmVYBFUb0lmr7ak?e=JLeADm /a /p p strong Mitigation /strong br GPL Odorizers recommends users clear t

Sign in to read the full article

Create a free account to access all news, downloads, and community features

Sign inCreate account

Originally published by CISA

Source: https://www.cisa.gov/news-events/ics-advisories/icsa-26-099-02

This article is shared for informational purposes. All rights belong to the original author and publisher. If you are the copyright holder and would like this content removed, please contact us.

Shared on IT-Hub by admin