CVE-2026-28255 | Trane Tracer SC/Tracer SC+/Tracer Concierge hard-coded credentials (icsa-26-071-01)

A vulnerability marked as critical has been reported in Trane Tracer SC, Tracer SC+ and Tracer Concierge. This issue affects some unknown processing. Performing a manipulation results in hard-coded credentials.

This vulnerability is cataloged as CVE-2026-28255. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More