These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-1763 affects GE Vernova Enervista UR Setup versions prior to 8.70. CISA’s advisory says certain firmware update files can trigger a directory traversal issue that may let an attacker write files on the filesystem with the privileges of the logged-in user. The supplied CVSS score is low, but the write capability means affected OT/engineering endpoints should be updated promptly.
CVE-2026-1762 affects GE Vernova Enervista UR Setup versions prior to 8.70. CISA’s advisory says the installer can be abused for DLL hijacking when it is run from a location containing unknown or untrusted DLLs, which can result in code execution with administrative privileges. The practical risk is highest on systems used to deploy or maintain OT/ICS engineering software, especially where installers are [truncated]