ICSA-26-183-02
·
Published 2026-07-02
·
View on CISA ICS-CERT ↗
CubeSpace CW0057 Reaction Wheel
CVSS 6.1
MEDIUM
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to upload arbitrary malicious firmware to the device.
CVEs (1)
Remediations
- CubeSpace has released the following firmware versions for users to enable: Firmware version 5.0.20. Firmware version 5.0.20 introduces the capability for cryptographically verified secure boot; however, this protection is not enabled by default. Users must activate signed‑boot functionality, particularly the fully immutable mode, to achieve full security.
- CubeSpace acknowledges the finding. The CW0057 reaction wheel authenticates firmware updates with a CRC-32 integrity check, which confirms image integrity but does not verify the source of an image. Exploitation requires direct physical access to the device and is not exploitable remotely. A device affected by this method remains recoverable: the bootloader operates independently of the application firmware and can reload known-good, CubeSpace-supplied images, so an affected unit cannot be permanently disabled by this method. Starting with firmware version 5.0.20, CubeSpace offers optional cryptographic secure boot of varying security levels which customers can enable. Given the physical-access prerequisite and the availability of recovery, CubeSpace assesses the practical risk as low.
Affected Vendors
CubeSpace
Affected Products (1)
CubeSpace
·
CW0057 Reaction Wheel
<firmware_5.0.20
Affected Sectors
Communications
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more