CVE-2026-1762
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L
Summary
A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| GE Vernova | Enervista | 8.6 and prior versions | affected |
Weaknesses
- CWE-23: CWE-23
Workarounds
As a workaround, GE Vernova recommends having secure infrastructure in place, which can protect the system. We also recommend that customers protect their digital devices using a defense-in-depth strategy. This includes, but is not limited to, placing digital devices inside the control system network security perimeter, access controls, robust network monitoring (such as Intrusion Detection System) and other mitigation techniques in place. Please refer to the product secure deployment guide.
It is essential for organizations to prioritize cybersecurity measures, including regular vulnerability assessments and prompt application of security patches.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.