www.cisa.gov 7/9/2026, 5:32:12 PM · external

Schneider Electric relays exposed via SNMP flaw CVE-2026-4832

CyberSIXT Evidence Panel
Primary Source cve.org
CISA KEV Not in KEV
Patch Patch Status Unknown

A vulnerability has been identified in Schneider Electric's Easergy MiCOM Px40 Series products, affecting various versions and potentially allowing unauthorized exposure of basic device identification via the SNMP protocol. Specifically, all versions prior to B4A for the P14x, D3A for the P24x, and other specified versions across different models are impacted. The CVSS score is 5.3, indicating medium severity due to the use of hard-coded credentials vulnerability (CVE-2026-4832).

Schneider Electric advises customers to upgrade firmware or apply mitigations like using relays in protected environments, employing firewalls, and utilizing VPNs for remote access. General best practices for cybersecurity in industrial control systems are also recommended.

View Primary Source Via www.cisa.gov

Article by CyberSIXT