CVE-2026-2460HIGH 8.1EPSS p19.3%

CVE-2026-2460CVE-2026-2460

Description

A vulnerability exists in REB500 for an authenticated user with low-level privileges to access and alter the content of directories by using the DAC protocol that the user is not authorized to do so.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS0.28% probability of exploitation · percentile 19.3% · 2026-06-19T12:03:05Z
Published2026-02-24
Last modified2026-02-26

Underlying weaknesses· 1

CWE-267

References

  1. https://publisher.hitachienergy.com/preview?DocumentID=8DBD000217&LanguageCode=en&DocumentPartId=&Action=Launch

1

TypeTargetConfidenceTier
WeaknessPrivilege Defined With Unsafe Actionscwe-2670%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-2459
CVE
CVE-2025-25268
CVE
CVE-2026-3999
CVE
CVE-2026-25293
CVE
CVE-2026-22907
CVE
CVE-2025-41651
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.