CVE-2025-67652

EUVD-2026-4502
An attacker with access to the project file could use the exposed 
credentials to impersonate users, escalate privileges, or gain 
unauthorized access to systems and services. The absence of robust 
encryption or secure handling mechanisms increases the likelihood of 
this type of exploitation, leaving sensitive information more 
vulnerable.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.1 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
icscertCNA
6.1 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Common Weakness Enumeration
References
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-022-02.json
https://www.cisa.gov/news-events/ics-advisories/icsa-26-022-02