CVE-2026-2459 | THREATINT

Description

A vulnerability exists in REB500 for an authenticated user with Installer role to access and alter the contents of directories that the role is not authorized to do so.

PUBLISHED Reserved 2026-02-13 | Published 2026-02-24 | Updated 2026-02-24 | Assigner Hitachi Energy

HIGH: 7.4CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-267 Privilege Defined with Unsafe Actions

Product status

Default status

unaffected

8.0.0.0 (custom)

affected

References

publisher.hitachienergy.com/...DocumentPartId=&Action=Launch

cve.org (CVE-2026-2459)

nvd.nist.gov (CVE-2026-2459)

Download JSON