← Back to home
ICSA-26-183-02  ·  Published 2026-07-02  ·  View on CISA ICS-CERT ↗

CubeSpace CW0057 Reaction Wheel

CVSS 6.1 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to upload arbitrary malicious firmware to the device.

CVEs (1)

Remediations

  • CubeSpace has released the following firmware versions for users to enable: Firmware version 5.0.20. Firmware version 5.0.20 introduces the capability for cryptographically verified secure boot; however, this protection is not enabled by default. Users must activate signed‑boot functionality, particularly the fully immutable mode, to achieve full security.
  • CubeSpace acknowledges the finding. The CW0057 reaction wheel authenticates firmware updates with a CRC-32 integrity check, which confirms image integrity but does not verify the source of an image. Exploitation requires direct physical access to the device and is not exploitable remotely. A device affected by this method remains recoverable: the bootloader operates independently of the application firmware and can reload known-good, CubeSpace-supplied images, so an affected unit cannot be permanently disabled by this method. Starting with firmware version 5.0.20, CubeSpace offers optional cryptographic secure boot of varying security levels which customers can enable. Given the physical-access prerequisite and the availability of recovery, CubeSpace assesses the practical risk as low.

Affected Vendors

CubeSpace

Affected Products (1)

CubeSpace · CW0057 Reaction Wheel <firmware_5.0.20

Affected Sectors

Communications

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more