NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-5387

Summary	The vulnerability, if exploited, could allow an unauthenticated miscreant to perform operations intended only for Simulator Instructor or Simulator Developer (Administrator) roles, resulting in privilege escalation with potential for modification of simulation parameters, training configuration, and training records.
Publication Date	April 16, 2026, 1:16 a.m.
Registration Date	April 17, 2026, 4:11 a.m.
Last Update	April 18, 2026, 12:09 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-106-04.json	ics-cert@hq.dhs.gov
2	https://softwaresupportsp.aveva.com/en-US/downloads/products/details/57b79fdb-7b5f-4125-8a44-833b6b5c6d6f	ics-cert@hq.dhs.gov
3	https://www.aveva.com/content/dam/aveva/documents/support/cyber-security-updates/SecurityBulletin_AVEVA-2026-004.pdf	ics-cert@hq.dhs.gov
4	https://www.cisa.gov/news-events/ics-advisories/icsa-26-106-04	ics-cert@hq.dhs.gov

Common Vulnerabilities List