CVE-2026-0393

EUVD-2026-31266
The affected product may expose credentials remotely between low privileged visualization users during concurrent login operations due to insufficient isolation of authentication data. The vulnerability affects only login operations within an active visualization session.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
CERTVDECNA
6.9 MEDIUM
NETWORK
LOW
LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
codesysvisualization
1.0.0.0 ≤
𝑥
< 4.10.0.0
CNA
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://codesys.csaf-tp.certvde.com/.well-known/csaf/white/2026/advisory2026-07_vde-2026-052.json