Schweitzer Engineering Laboratories Application State Modification Vulnerability

A vulnerability exists that allows authenticated users to alter application state data. This issue has been identified in various SEL software products, including the SEL-5030 acSELerator QuickSet Software, SEL-5037 SEL Grid Configurator, SEL-5056 Software-Defined Network Flow Controller, SEL-5033 acSELerator RTAC Software, SEL-5702 Synchrowave Operations, SEL-5035 acSELerator Diagram Builder Software, SEL-5032 acSELerator Architect Software, SEL-5703 Synchrowave Monitoring, SEL-5231 SEL Configuration API, SEL-5052 Server Software, SEL-5051 Client Software, SEL Compass, Blueframe OS, and several Blueframe applications. Additionally, this vulnerability affects certain SEL BIOS updates and driver bundles for Windows and Linux.

Impact

Exploitation of this vulnerability allows for unauthorized modification of application state data, which could lead to incorrect application behavior or data integrity issues.