ICSA-26-050-03 · Published 2026-02-19 · View on CISA ICS-CERT ↗

Jinan USR IOT Technology Limited (PUSR) USR-W610

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could result in authentication being disabled, a denial-of-service condition, or an attacker stealing valid user credentials, including administrator credentials.

CVEs (4)

CVE-2026-25715 CVE-2026-24455 CVE-2026-26049 CVE-2026-26048

Remediations

Jinan USR IOT Technology Limited (PUSR) has stated that the product is end-of-life, and there are no plans to patch. Users of PUSR USR-W610 devices are encouraged to contact PUSR and keep their systems up to date.

Affected Vendors

Jinan USR IOT Technology Limited (PUSR)

Affected Products (1)

Jinan USR IOT Technology Limited (PUSR) · USR-W610 <=3.1.1.0

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more