EUVD-2026-29830

🗓️ 12 May 2026 21:31:36Reported by EUVDType

PowerSYSTEM Center email notification service has a CRLF injection vulnerability in SMTPS.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-35504	12 May 202620:19	–	attackerkb
Circl	CVE-2026-35504	12 May 202610:00	–	circl
CNNVD	Subnet Solutions PowerSYSTEM Center 注入漏洞	12 May 202600:00	–	cnnvd
CVE	CVE-2026-35504	12 May 202620:19	–	cve
Cvelist	CVE-2026-35504 Subnet Solutions PowerSYSTEM Center CRLF injection	12 May 202620:19	–	cvelist
NVD	CVE-2026-35504	12 May 202621:16	–	nvd
Positive Technologies	PT-2026-40431	12 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-35504	5 Jun 202619:23	–	redhatcve
Vulnrichment	CVE-2026-35504 Subnet Solutions PowerSYSTEM Center CRLF injection	12 May 202620:19	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "f3a462ab-f4b5-3e81-b488-14c82c77592f",
        "vendor": {
          "name": "SUBNET Solutions"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "3a121f28-dce8-3683-a79d-43c115732dcd",
        "product": {
          "name": "PowerSYSTEM Center 2026"
        },
        "product_version": "7.0.x"
      },
      {
        "id": "d319221e-5850-3646-8c70-291869d142cf",
        "product": {
          "name": "PowerSYSTEM Center 2024"
        },
        "product_version": "6.0.x ≤6.1.x"
      },
      {
        "id": "d9e68913-fcb8-364b-9700-8ea45296e2ab",
        "product": {
          "name": "PowerSYSTEM Center 2020"
        },
        "product_version": "0 ≤5.28.x"
      }
    ]
  }
]

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-26-132-02
github	www.github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-132-02.json
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-35504

12 May 2026 21:31Current

5.8Medium risk

Vulners AI Score5.8

CVSS 45.1

CVSS 3.15.5

EPSS0.00014

SSVC