{"cve":{"cve_id":"CVE-2026-9650","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":null,"epss_percentile":null,"epss_as_of":null,"description":"CWE-522 Insufficiently Protected Credentials vulnerability that could cause unauthorized access and exposure of sensitive information when unauthenticated attacker accesses credentials stored within firmware or system files. With this credential an attacker could subsequently compromise the device if they have physical access to the device.","published_at":"2026-06-25T14:44:30.419000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":8.7,"cvss_v4_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N","cvss_v4_severity":"HIGH","ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-522"],"nvd_references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-160-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-160-02.pdf"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-28T17:56:27.543306Z","updated_at":"2026-06-28T23:31:13.439411Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"N","value_label":"None"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"N","value_label":"None"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"N","value_label":"None"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"N","value_label":"None"},{"metric":"SA","name":"Availability (Subsequent System)","value":"N","value_label":"None"}]},"affected":[{"vendor_slug":"schneider-electric","vendor_name":"Schneider Electric","product_slug":"easylogic-t150-formerly-saitel-dr-remote-terminal-unit-controller","product_name":"EasyLogic T150 (formerly Saitel DR) Remote Terminal Unit & Controller","version_start":"Version 11.06.30 and prior","version_start_inclusive":true,"version_end":"Version 11.06.30 and prior","version_end_inclusive":true,"cpe23_uri":"cve5:schneider-electric:easylogic-t150-formerly-saitel-dr-remote-terminal-unit-controller:Version 11.06.30 and prior:Version 11.06.30 and prior"},{"vendor_slug":"schneider-electric","vendor_name":"Schneider Electric","product_slug":"saitel-dp-remote-terminal-unit-controller","product_name":"Saitel DP Remote Terminal Unit & Controller","version_start":"Version 11.06.35 and prior","version_start_inclusive":true,"version_end":"Version 11.06.35 and prior","version_end_inclusive":true,"cpe23_uri":"cve5:schneider-electric:saitel-dp-remote-terminal-unit-controller:Version 11.06.35 and prior:Version 11.06.35 and prior"}],"exploit_refs":[],"news":[],"references":[{"url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-160-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-160-02.pdf","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2026-06-25T14:44:30.419000Z","label":"CVE published","source":null}]}