ICSA-26-057-10 · Published 2026-02-26 · View on CISA ICS-CERT ↗

Copeland XWEB and XWEB Pro

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication, cause a denial-of-service condition, cause memory corruption, and execute arbitrary code.

CVEs (23)

CVE-2026-25085 CVE-2026-21718 CVE-2026-24663 CVE-2026-21389 CVE-2026-25111 CVE-2026-20742 CVE-2026-24517 CVE-2026-25195 CVE-2026-20910 CVE-2026-24689 CVE-2026-25109 CVE-2026-20902 CVE-2026-24695 CVE-2026-25105 CVE-2026-24452 CVE-2026-23702 CVE-2026-25721 CVE-2026-20764 CVE-2026-25196 CVE-2026-25037 CVE-2026-22877 CVE-2026-20797 CVE-2026-3037

Remediations

Copeland has provided a fix for the vulnerabilities and recommends users update the XWEB Pro to the latest version by going to their software update page https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate in the sections dedicated to the different XWEBPRO models page.
Alternatively, a user logged into an XWEB Pro with internet access can update XWEB Pro directly from Copeland servers via the menu SYSTEM -- Updates | Network.

Affected Vendors

Copeland

Affected Products (3)

Copeland · XWEB 300D PRO <=1.12.1

Copeland · XWEB 500D PRO <=1.12.1

Copeland · XWEB 500B PRO <=1.12.1

Affected Sectors

Commercial Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more