CVE-2026-2460

Summary

A vulnerability exists in REB500 for an authenticated user with low-level privileges to access and alter the content of directories by using the DAC protocol that the user is not authorized to do so.

Affected Software

VendorProductVersion RangeStatus
Hitachi EnergyRelion REB5008.0.0.0 <= 8.3.3.0affected

Weaknesses

  • CWE-267: CWE-267 Privilege Defined with Unsafe Actions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References