PatchSiren cyber security CVE debrief
CVE-2026-30695 Zucchetti CVE debrief
A Cross-Site Scripting (XSS) vulnerability exists in the web-based configuration interface of Zucchetti Axess access control devices, including XA4, X3/X3BIO, X4, X7, and XIO / i-door / i-door+. The vulnerability is caused by improper sanitization of user-supplied input in the dirBrowse parameter of the /file_manager.cgi endpoint. This allows for Cross-Site Scripting (XSS) attacks. The exposure question revolves around whether affected product deployments exist in managed environments. The likely defender workflow involves confirming affected scope, applying vendor patches or updates, and implementing compensating controls. The priority posture for this vulnerability is medium, given its CVSS score of 6.1.
- Vendor
- Zucchetti
- Product
- Axess access control
- CVSS
- MEDIUM 6.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-03-18
- Original CVE updated
- 2026-07-05
- Advisory published
- 2026-03-18
- Advisory updated
- 2026-07-05
Who should care
Users of Zucchetti Axess access control devices, including XA4, X3/X3BIO, X4, X7, and XIO / i-door / i-door+, should be aware of this medium severity vulnerability. Operators, administrators, and security teams responsible for these devices should take necessary precautions to mitigate the vulnerability. Vulnerability management and security teams should prioritize patching or mitigating this vulnerability in Zucchetti Axess access control devices.
Technical summary
The CVE-2026-30695 vulnerability has a CVSS score of 6.1 and is classified as MEDIUM severity. It exists in the web-based configuration interface of Zucchetti Axess access control devices, including XA4, X3/X3BIO, X4, X7, and XIO / i-door / i-door+. The vulnerability is caused by improper sanitization of user-supplied input in the dirBrowse parameter of the /file_manager.cgi endpoint. This allows for Cross-Site Scripting (XSS) attacks. Users and administrators should be aware of the potential risks and take necessary precautions to mitigate the vulnerability.
Defensive priority
Medium priority should be given to patching or mitigating this vulnerability in Zucchetti Axess access control devices. Defenders should focus on verifying affected scope, applying vendor patches or updates, and implementing compensating controls.
Recommended defensive actions
- Confirm whether affected product deployments exist in managed environments and assign an owner for follow-up.
- Review the supplied official advisory or CVE record to validate affected scope, severity, and vendor guidance.
- Plan vendor-supported updates or mitigations through normal change control where exposure is confirmed.
- Review compensating controls for exposed systems while remediation is scheduled and verified.
- Check relevant monitoring, detection, and logs for exposed assets that need extra review.
Evidence notes
The CVE record was published on 2026-03-18T17:16:06.817Z and was last modified on 2026-07-05T17:17:29.870Z. The NVD entry is currently Deferred. The source item URL for CVE-2026-30695 is not provided, and the official CVE record and NVD detail page should be consulted for further information. The evidence basis for this debrief is limited to the supplied source corpus, and defenders should verify the affected scope and severity with the vendor.
Official resources
-
CVE-2026-30695 CVE record
CVE.org
-
CVE-2026-30695 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-03-18T17:16:06.817Z and has not been modified since then. The NVD entry is currently Deferred.