Skip to main content

Powersystem Center 2026

3 CVEs product

Monthly

CVE-2026-26289 HIGH CISA Act Now

PowerSYSTEM Center REST API endpoint for device account export allows an authenticated user with limited permissions to expose sensitive information normally restricted to administrative permissions only.

Authentication Bypass Powersystem Center 2020 Powersystem Center 2024 Powersystem Center 2026
NVD GitHub
CVSS 4.0
8.4
EPSS
0.0%
CVE-2026-35555 HIGH CISA Act Now

PowerSYSTEM Center feature for device project groups allows an authenticated user with limited permissions to perform an unauthorized deletion of project groups.

Authentication Bypass Powersystem Center 2024 Powersystem Center 2026
NVD GitHub
CVSS 4.0
7.0
EPSS
0.0%
CVE-2026-35504 MEDIUM CISA This Month

PowerSYSTEM Center email notification service is affected by a CRLF injection vulnerability when using SMTPS communication.

Code Injection Powersystem Center 2020 Powersystem Center 2024 Powersystem Center 2026
NVD GitHub
CVSS 4.0
5.1
EPSS
0.0%
EPSS 0% CVSS 8.4
HIGH Act Now

PowerSYSTEM Center REST API endpoint for device account export allows an authenticated user with limited permissions to expose sensitive information normally restricted to administrative permissions only.

Authentication Bypass Powersystem Center 2020 Powersystem Center 2024 +1
NVD GitHub
EPSS 0% CVSS 7.0
HIGH Act Now

PowerSYSTEM Center feature for device project groups allows an authenticated user with limited permissions to perform an unauthorized deletion of project groups.

Authentication Bypass Powersystem Center 2024 Powersystem Center 2026
NVD GitHub
EPSS 0% CVSS 5.1
MEDIUM This Month

PowerSYSTEM Center email notification service is affected by a CRLF injection vulnerability when using SMTPS communication.

Code Injection Powersystem Center 2020 Powersystem Center 2024 +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy