CVE-2026-8072

UNKNOWN 0.0

Insecure generation of SAT access credentials in Ingecon EMS Board

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Insecure generation of credentials in the local SAT (Technical Support) access functionality of the Ingecon Sun EMS Board. The vulnerability arose because the secret access credentials were not based on a secure cryptographic scheme, but rather on a weak hashing algorithm, which could allow an attacker to carry out a privilege escalation.

CWE	CWE-327
Vendor	ingeteam
Product	ingecon sun ems board
Published	May 12, 2026
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for ingeteam ingecon sun ems board

Be the first to know when new unknown vulnerabilities affecting ingeteam ingecon sun ems board are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Ingeteam / Ingecon Sun EMS Board

0 ≤ AAX1055CT 0 ≤ ABU1001_P 0 ≤ ACL1201_B 0 ≤ ACL1200AL 0 ≤ ABH1027_K 0 ≤ ABH1007_Z 0 ≤ ABS1009_L 0 ≤ ABS1005_T 0 ≤ ACB1005_A 0 ≤ AAX1031CN

References

NVD ↗ CVE.org ↗ EPSS Data ↗

incibe.es: https://www.incibe.es/en/incibe-cert/notices/aviso-sci/insecure-generation-sat-access-credentials-ingecon-ems-board reversemode.com: https://www.reversemode.com/2026/05/a-practical-analysis-of-cyber-physical.html

Credits

Rubén Santamarta