CVE-2026-4832_CVE-2026-4832

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Description

CWE-798 Use of Hard-coded Credentials vulnerability exists that could cause unauthorized access to sensitive device information when an unauthenticated attacker is able to interrogate the SNMP port.

Basic Information

ID CVE-2026-4832

Source schneider

Published Apr 14, 2026 at 15:05

Modified Apr 14, 2026 at 15:17

Affected Product

Vendor Schneider Electric

Product Easergy MiCOM P14x

Version All versions prior to B4A

Affected Versions Schneider Electric Easergy MiCOM P14x All versions prior to B4A
Schneider Electric Easergy MiCOM P24x All versions prior to D3A
Schneider Electric Easergy MiCOM P341 All versions prior to E3F
Schneider Electric Easergy MiCOM P342, P343, P344, P345 All versions prior to B3F
Schneider Electric Easergy MiCOM P442, P444 All versions prior to E3A
Schneider Electric Easergy MiCOM P443, P445, P446, P543, P544, P545, P546 All versions prior to H6A
Schneider Electric Easergy MiCOM P642, P645 All versions prior to B4A
Schneider Electric Easergy MiCOM P643 All versions prior to B3F
Schneider Electric Easergy MiCOM P741, P742, P743 All versions prior to B2A
Schneider Electric Easergy MiCOM P746 All versions prior to B4E or C4E
Schneider Electric Easergy MiCOM P841 All versions prior to G6A
Schneider Electric Easergy MiCOM P849 All versions prior to B4A

CWE Classification

CWE-798

References

download.schneider-electric.com /files

{
    "lastseen": "",
    "description": "CWE-798 Use of Hard-coded Credentials vulnerability exists that could cause unauthorized access to sensitive device information when an unauthenticated attacker is able to interrogate the SNMP port.",
    "published": "2026-04-14T15:05:00.845Z",
    "modified": "2026-04-14T15:17:08.719Z",
    "type": "cve",
    "title": "CVE-2026-4832",
    "source": "schneider",
    "references": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-104-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-104-03.pdf",
    "id": "CVE-2026-4832",
    "bulletinFamily": "",
    "cwe": [
        "CWE-798"
    ],
    "cvelist": null,
    "sourceData": "Schneider Electric Easergy MiCOM P14x All versions prior to B4A\nSchneider Electric Easergy MiCOM P24x All versions prior to D3A\nSchneider Electric Easergy MiCOM P341 All versions prior to E3F\nSchneider Electric Easergy MiCOM P342, P343, P344, P345 All versions prior to B3F\nSchneider Electric Easergy MiCOM P442, P444 All versions prior to E3A\nSchneider Electric Easergy MiCOM P443, P445, P446, P543, P544, P545, P546 All versions prior to H6A\nSchneider Electric Easergy MiCOM P642, P645 All versions prior to B4A\nSchneider Electric Easergy MiCOM P643 All versions prior to B3F\nSchneider Electric Easergy MiCOM P741, P742, P743 All versions prior to B2A\nSchneider Electric Easergy MiCOM P746 All versions prior to B4E or C4E\nSchneider Electric Easergy MiCOM P841 All versions prior to G6A\nSchneider Electric Easergy MiCOM P849 All versions prior to B4A",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Easergy MiCOM P14x",
    "version": "All versions prior to B4A",
    "vendor": "Schneider Electric",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}