Primary

Context

Schneider Electric Web Applications Sensitive Information Disclosure Vulnerability

Vulnerability

A vulnerability allowing the exposure of sensitive information to unauthorized users has been identified in certain web applications by Schneider Electric. This issue could lead to the unauthorized disclosure of restricted web pages, unauthorized modification of web content, and denial-of-service conditions when modified pages invoke restricted functions.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure, unauthorized web page modifications, and denial-of-service conditions on affected systems.

Remediation

Users are advised to consult the Security and Safety Notice SEVD-2025-014-05 for guidance on addressing this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Schneider Electric Web Applications Sensitive Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating