CVE-2026-13743

Summary

CubeSpace CW0057 Reaction Wheel firmware versions prior to 5.0.20 are vulnerable to an Improper Verification of Cryptographic Signature vulnerability. This could allow an attacker with physical access to the product to upload arbitrary malicious firmware to the device without authentication.

Affected Software

VendorProductVersion RangeStatus
CubeSpaceCW0057 Reaction Wheel0 < 5.0.20affected

Weaknesses

  • CWE-347: CWE-347 Improper verification of cryptographic signature

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References