External risk intelligence

Ingecon Sun EMS Board could allow local attackers to gain administrative access.

The Ingecon Sun EMS Board could allow individuals with physical or direct internal network access to escalate privileges, potentially exposing administrative control of the device. This issue stems from the use of insecure methods to generate technical support credentials.

NVD published May 12, 2026 (3 days ago)

External risk briefCRITICAL

CVE-2026-8072

Halo Surface Signal

1/ 5

The vulnerability affects the local technical support access functionality of the device, which is explicitly designed for local management. It requires physical or direct internal network access and is not intended or typically exposed to the public internet.

Exposure facts

CVSS

9.2

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

EPSS

0.03%

H – Horizon Alert

A security vulnerability exists within the local technical support access system of the Ingecon Sun EMS Board. This issue stems from the use of a weak, insecure hashing method to generate credentials instead of modern, robust cryptographic standards. If accessed by an unauthorized party, this flaw could enable privilege escalation, granting them elevated control over the device. This is important to note, as it could allow unauthorized users to circumvent intended security restrictions on the hardware.

A – Asset Exposure

This vulnerability impacts the Ingecon Sun EMS Board, specifically within its local technical support access functionality. Due to the weak methods used to generate credentials, there is a risk that unauthorized individuals could gain elevated admin access to the system. This component is designed for local management, meaning exposure is typically limited to users with physical or direct internal network access to the equipment.

L – Live Threat

We are monitoring an issue regarding how technical support credentials are generated within the Ingecon Sun EMS Board. Currently, the available context does not indicate active exploitation or observed targeting of this vulnerability. While the reliance on a weak cryptographic process could theoretically permit unauthorized privilege escalation, we have no evidence that this issue is being leveraged in real-world scenarios.

O – Operational Fix

We recommend determining whether the Ingecon Sun EMS Board is currently deployed within your operational environment. Please prioritize contacting the vendor to obtain official guidance regarding this credential security matter, as specific remediation steps are not currently available. We suggest reviewing your internal configurations to see if the local Technical Support (SAT) access functionality is enabled, which will help your team prepare for necessary updates.