CVE-2026-22537 | THREATINT

Description

The lack of hardening of the system allows the user used to manage and maintain the charger to consult different files containing clear-text credentials or valuable information for an attacker.

PUBLISHED Reserved 2026-01-07 | Published 2026-01-07 | Updated 2026-01-07 | Assigner S21sec

MEDIUM: 6.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-497: Exposure of sensitive system information to an unauthorized control sphere

Product status

Default status

unaffected

affected

Credits

Aarón Flecha Menéndez finder

Iván Alonso Álvarez finder

Víctor Bello Cuevas finder

References

cds.thalesgroup.com/en

cve.org (CVE-2026-22537)

nvd.nist.gov (CVE-2026-22537)

Download JSON