CVE-2026-9523 – Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform getCalcmeterDetailDayListTree sql injection

CVE ID :CVE-2026-9523

Published : May 26, 2026, 2:30 a.m. | 1 hour, 28 minutes ago

Description :A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument sort results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9525 – itsourcecode Electronic Judging System edit_judge.php sql injection

CVE-2026-9524 – xianrendzw EasyReport REST Endpoint execute sql injection

CVE-2026-9521 – fraillt bitsery std_smart_ptr.h loadFromSharedState improper validation of specified type of input

CVE-2026-4795 – Zyxel GS1200 Series Missing Authorization Vulnerability (Configuration Disclosure)