High severityNVD Advisory· Published May 12, 2026· Updated May 12, 2026
CVE-2026-6866
CVE-2026-6866
Description
CWE-1188 Initialization of a Resource with an Insecure Default vulnerability exists that could cause unauthorized disclosure of sensitive information when credentials revert to initial settings in rare circumstances, enabling unauthorized authentication using known credentials.
Patches
Vulnerability mechanics
References
1News mentions
1- Schneider Electric EcoStruxure Panel ServerCISA ICS Advisories