Clear Text Storage of Sensitive Information on EcoStruxure™ Machine Expert...

6.8 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information which could result in revealing protected source code and loss of confidentiality, When an authorized attacker accesses the source code for editing or compiling it.

Basic Information

ID CVE-2026-6332

Source schneider

Published May 14, 2026 at 16:54

Affected Product

Vendor Schneider Electric

Product Ecostruxure™ Machine Expert HVAC

Version Versions prior to 1.10.0

Affected Versions Schneider Electric Ecostruxure™ Machine Expert HVAC Versions prior to 1.10.0

CWE Classification

CWE-312

References

download.schneider-electric.com /files

{
    "lastseen": "",
    "description": "CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information  which could result in revealing protected source code and loss of confidentiality, When an authorized attacker accesses the source code for editing or compiling it.",
    "published": "2026-05-14T16:54:50.465Z",
    "modified": "2026-05-14T16:54:50.465Z",
    "type": "cve",
    "title": "Clear Text Storage of Sensitive Information on EcoStruxure\u2122 Machine Expert HVAC",
    "source": "schneider",
    "references": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-132-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-132-01.pdf",
    "id": "CVE-2026-6332",
    "bulletinFamily": "",
    "cwe": [
        "CWE-312"
    ],
    "cvelist": null,
    "sourceData": "Schneider Electric Ecostruxure\u2122 Machine Expert HVAC Versions prior to 1.10.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Ecostruxure\u2122 Machine Expert HVAC",
    "version": "Versions prior to 1.10.0",
    "vendor": "Schneider Electric",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Clear Text Storage of Sensitive Information on EcoStruxure™ Machine Expert HVAC_CVE-2026-6332