What is CVE-2026-22614?

CVE-2026-22614 is a medium-severity vulnerability in Eaton Easysoft, classified under Storing Passwords in a Recoverable Format. CVSS score: 6.1/10. Published 2026-03-10.

How severe is CVE-2026-22614?

Medium severity. CVSS v3 base score is 6.1 out of 10.

Vulnerability in Eaton Easysoft

CVE-2026-22614

The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially read the sensitive information stored and…

EPSS: 0.000 (1.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.1 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N.

Affected products

Eaton Easysoft — versions 0

Weakness classification (CWE)

CWE-257 — Storing Passwords in a Recoverable Format

References

CybersecurityCOE@eaton.com (Mitigation, Vendor Advisory)

Frequently asked questions

What is CVE-2026-22614?: CVE-2026-22614 is a medium-severity vulnerability in Eaton Easysoft, classified under Storing Passwords in a Recoverable Format. CVSS score: 6.1/10. Published 2026-03-10.
How severe is CVE-2026-22614?: Medium severity. CVSS v3 base score is 6.1 out of 10.