CVE-2026-2402

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

CWE-307 Improper Restriction of Excessive Authentication Attempts vulnerability exists that would allow an attacker to gain access to the user account by performing an arbitrary number of authentication attempts with different credentials on a sequence of requests to multiple endpoints.

CWE	CWE-307
Vendor	schneider electric
Product	powerchute™ serial shutdown
Published	Apr 14, 2026
Last Updated	Apr 14, 2026

Stay Ahead of the Next One

Get instant alerts for schneider electric powerchute™ serial shutdown

Be the first to know when new unknown vulnerabilities affecting schneider electric powerchute™ serial shutdown are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Schneider Electric / PowerChute™ Serial Shutdown

Versions v1.4 and prior

References

NVD ↗ CVE.org ↗ EPSS Data ↗

download.schneider-electric.com: https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-104-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-104-01.pdf