CVE-2025-50124NVD

Vulnerability Summary

A

CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation when the
server is accessed by a privileged account via a console and through exploitation of a setup script.

Severity Level

HIGH(7.2)

Published Date

Jul 11, 2025

Last Modified

Jul 15, 2025

Exploitation Status

????

EPSS Score (30-Day)

Data Pending

Root Weakness (CWE)

CWE-269: Unknown/Unlisted Weakness ↗

Refer to the official MITRE database for detailed architectural specifications regarding this weakness.

CVSS v4.0 Base Metrics

Attack VectorPhysical

Attack ComplexityHigh

Privileges RequiredHigh

User InteractionNone

External References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-189-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-189-01.pdf

Critical Alert

CVE Watchtower

CVE-2025-50124NVD

Vulnerability Summary

External References