CVE-2026-9523 in EEMS Enterprise Power Operation and Maintenance Cloud Platforminformação

Sumário

de MITRE • 26/05/2026

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument sort results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulDB

Divulgação

26/05/2026

Moderação

aceite

Entrada

VDB-365542

CPE

pronto

CWE

CWE-89 (confirmado)

Exploração

Descarregar

CVSS

7.3 (VulDB)

EPSS

0.00037

KEV

não

Atividades

muito baixo

Sector

Insurance, Finance, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-9523
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-9523
CVE Details	https://www.cvedetails.com/cve/CVE-2026-9523/

◂ Voltar Visão Geral Próximo ▸

Do you know our Splunk app?

Download it now for free!