1. Home
  2. CVE Database
  3. CVE-2026-1772
MEDIUM · 5.3

CVE-2026-1772

RTU500 web interface: An unprivileged user can read user management information. The information cannot be accessed via the RTU500 web user interface but requires further tools like browser developmen...

Vulnerability Description

RTU500 web interface: An unprivileged user can read user management information. The information cannot be accessed via the RTU500 web user interface but requires further tools like browser development utilities to access them without required privileges.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
HitachienergyRtu520 Firmware>= 12.7.1, <= 12.7.7
HitachienergyRtu520-
HitachienergyRtu530 Firmware>= 12.7.1, <= 12.7.7
HitachienergyRtu530-
HitachienergyRtu540 Firmware>= 12.7.1, <= 12.7.7
HitachienergyRtu540-
HitachienergyRtu560 Firmware>= 12.7.1, <= 12.7.7
HitachienergyRtu560-

Related Weaknesses (CWE)

CWE-280

References

FAQ

What is CVE-2026-1772?

CVE-2026-1772 is a vulnerability with a CVSS score of 5.3 (MEDIUM). RTU500 web interface: An unprivileged user can read user management information. The information cannot be accessed via the RTU500 web user interface but requires further tools like browser developmen...

How severe is CVE-2026-1772?

CVE-2026-1772 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-1772?

Check the references section above for vendor advisories and patch information. Affected products include: Hitachienergy Rtu520 Firmware, Hitachienergy Rtu520, Hitachienergy Rtu530 Firmware, Hitachienergy Rtu530, Hitachienergy Rtu540 Firmware.