CVE Catalog

CVE-2026-9650

HighCVSS 8.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

CVE-2026-9650 is a vulnerability related to insufficiently protected credentials, which may lead to unauthorized access and exposure of sensitive information. An attacker with physical access to the device could use these credentials to compromise it.

Risk Assessment

The organization is at risk of losing confidential data and potentially losing control over devices, which could lead to serious security consequences.

Recommendation

It is recommended to implement stronger credential protection mechanisms and conduct regular security audits of systems and firmware to minimize the risk of unauthorized access.

Original NVD description (English source)

CWE-522 Insufficiently Protected Credentials vulnerability that could cause unauthorized access and exposure of sensitive information when unauthenticated attacker accesses credentials stored within firmware or system files. With this credential an attacker could subsequently compromise the device if they have physical access to the device.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS