CVE-2026-35504

Name of the Vulnerable Software and Affected Versions PowerSYSTEM Center (affected versions not specified)

Description The email notification service is subject to a CRLF injection, which occurs when a system fails to properly sanitize carriage return (CR) and line feed (LF) characters, allowing an attacker to inject malicious headers or content into the email stream during SMTPS communication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.