CVE-2026-26289

Published May 12th, 2026

View on NVD ↗

CVSS v3

8.2

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

PowerSYSTEM Center REST API endpoint for device account export allows an authenticated user with limited permissions to expose sensitive information normally restricted to administrative permissions only.

cisagov/CSAF

CISA CSAF Security Advisories

GitHub