CVE-2025-26468 CyberData CVE debrief

Who should care

Organizations using CyberData 011209 SIP Emergency Intercom devices should prioritize this issue, especially industrial, facility, physical security, and operations teams responsible for OT/ICS-connected communications equipment.

Technical summary

The advisory describes an unauthenticated attack surface in CyberData 011209 SIP Emergency Intercom versions <22.0.1. The supplied CVSS 3.1 vector is AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating network-reachable impact with no privileges or user interaction required and primary availability impact. The vendor remediation is to update to v22.0.1.

Defensive priority

High. The combination of unauthenticated access and availability impact makes this a priority for exposed intercom deployments, particularly where disruption could affect safety or operations.

Recommended defensive actions

• Upgrade CyberData 011209 SIP Emergency Intercom to version 22.0.1 or later.
• Inventory where the product is deployed and confirm whether any instances are running versions earlier than 22.0.1.
• Restrict network exposure to management and device interfaces where possible.
• Monitor for signs of service instability or unauthorized access attempts on affected devices.
• Follow CISA recommended practices for industrial control systems and device hardening.

Evidence notes

All claims are limited to the supplied CISA CSAF advisory and the embedded vendor remediation. The affected version range is explicitly listed as CyberData 011209 SIP Emergency Intercom: <22.0.1, and the remediation is update to v22.0.1. The CVSS vector and severity were taken from the source corpus. No exploit details or unsupported attack paths are included.

Official resources