High severityNVD Advisory· Published May 12, 2026· Updated May 14, 2026
CVE-2026-4827
CVE-2026-4827
Description
CWE‑331: Insufficient Entropy vulnerability exists that could lead to unauthorized access when an attacker on the network can exploit weaknesses in session‑management protections.
Patches
Vulnerability mechanics
References
1News mentions
1- Schneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel ProductsCISA ICS Advisories