CVE-2026-22614

{"id": "CVE-2026-22614", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "CybersecurityCOE@eaton.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 4.2, "exploitabilityScore": 1.8}]}, "published": "2026-03-10T18:18:12.420", "references": [{"url": "https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/etn-va-2025-1023.pdf", "tags": ["Vendor Advisory", "Mitigation"], "source": "CybersecurityCOE@eaton.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "CybersecurityCOE@eaton.com", "description": [{"lang": "en", "value": "CWE-257"}]}], "descriptions": [{"lang": "en", "value": "The encryption mechanism used in Eaton's EasySoft project file was\u00a0insecure and susceptible to brute force attacks, an attacker with access to this file and the local host\nmachine could potentially read the sensitive information stored and tamper with the project file. This security issue has been fixed in the latest version of Eaton EasySoft which is available on the Eaton download centre."}, {"lang": "es", "value": "El mecanismo de cifrado utilizado en el archivo de proyecto EasySoft de Eaton era inseguro y susceptible a ataques de fuerza bruta, un atacante con acceso a este archivo y la m\u00e1quina anfitriona local podr\u00eda potencialmente leer la informaci\u00f3n sensible almacenada y manipular el archivo de proyecto. Este problema de seguridad ha sido solucionado en la \u00faltima versi\u00f3n de Eaton EasySoft, que est\u00e1 disponible en el centro de descargas de Eaton."}], "lastModified": "2026-05-21T13:07:15.060", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:eaton:easysoft:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7E5837B-5467-425F-A826-7FDAA54B79A7", "versionEndExcluding": "8.41"}], "operator": "OR"}]}], "sourceIdentifier": "CybersecurityCOE@eaton.com"}