What is the CVSS score of CVE-2026-26334?

CVE-2026-26334 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Windows are affected by CVE-2026-26334?

Calero VeraSMART installations contain hardcoded encryption keys that compromise the security of service account credentials stored on affected systems.

How to fix or mitigate CVE-2026-26334?

Within 24 hours: Inventory all VeraSMART deployments and identify systems running versions prior to 2026 R1. Within 7 days: Implement network segmentation to restrict access to VeraSMART servers and rotate all service account credentials used by VeraSMART. Within 30 days: Upgrade to VeraSMART 2026 R1 or later when available, or contact Calero for a timeline and interim security guidance.

Windows CVE-2026-26334

HIGH

Use of Hard-coded Credentials (CWE-798)

2026-02-13 disclosure@vulncheck.com

Windows Privilege Escalation Verasmart

7.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.8 HIGH

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:02 vuln.today

CVE Published

Feb 13, 2026 - 21:16 nvd

HIGH 7.8

DescriptionCVE.org

Calero VeraSMART versions prior to 2026 R1 contain hardcoded static AES encryption keys within Veramark.Framework.dll (Veramark.Core.Config class). These keys are used to encrypt the password of the service account stored in C:\\VeraSMART Data\\app.settings. An attacker with local access to the system can extract the hardcoded keys from the Veramark.Framework.dll module and decrypt the stored credentials. The recovered credentials can then be used to authenticate to the Windows host, potentially resulting in local privilege escalation depending on the privileges of the configured service account.

AnalysisAI

Local privilege escalation in Calero VeraSMART versions before 2026 R1 stems from hardcoded AES encryption keys embedded in Veramark.Framework.dll that protect service account credentials stored in app.settings. An attacker with local system access can extract these static keys, decrypt the stored passwords, and use the recovered credentials to authenticate as the service account, potentially gaining elevated privileges depending on that account's permissions. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Obtain local system access

Delivery

Extract Veramark.Framework.dll from installation

Exploit

Retrieve hardcoded AES keys from Veramark.Core.Config

Execution

Decrypt app.settings password

Persist

Authenticate as service account

Impact

Escalate privileges

Access

Obtain local system access

Delivery

Extract Veramark.Framework.dll from installation

Exploit

Retrieve hardcoded AES keys from Veramark.Core.Config

Execution

Decrypt app.settings password

Persist

Authenticate as service account

Impact

Escalate privileges

Vulnerability AssessmentAI

Exploitation	Local access to Calero VeraSMART system with read access to C:\VeraSMART Data\app.settings and Veramark.Framework.dll file. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 7.8 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker could exploit this flaw, local privilege escalation depending on the privileges of th.
Remediation	Monitor vendor advisories for a patch. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all VeraSMART deployments and identify systems running versions prior to 2026 R1. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-12437 This Week

Jun 17

Use after free in WebShare in Google Chrome on Windows prior to 149.0.7827.155 allowed a remote attacker who had comprom

CVE-2026-12440 This Week

Jun 17

Use after free in DigitalCredentials in Google Chrome on Windows prior to 149.0.7827.155 allowed a remote attacker to po

CVE-2026-12444 This Week

Jun 17

Out of bounds read in Chromoting in Google Chrome on Windows prior to 149.0.7827.155 allowed a local attacker to obtain

CVE-2026-12449 This Week

Jun 17

Use after free in Chromoting in Google Chrome on Windows prior to 149.0.7827.155 allowed a local attacker to perform OS-

CVE-2026-12461 This Week

Jun 17

Out of bounds read in WebRTC in Google Chrome on Windows prior to 149.0.7827.155 allowed a remote attacker to obtain pot

CVE-2026-26334 vulnerability details – vuln.today

Back

Windows CVE-2026-26334

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

More from same product – last 7 days

Share

External POC / Exploit Code