CNNVD-202508-2011 Information

CNNVD ID

CNNVD-202508-2011

Related CVE

CVE-2025-5296

• CNNVD Published: 2025-08-18

Description (Chinese)

Schneider Electric SESU是法国施耐德电气（Schneider Electric）公司的一个用于优化能源使用效率的模块。 Schneider Electric SESU存在后置链接漏洞，该漏洞源于链接解析不当，可能导致权限提升或拒绝服务。

Description (English)

Schneider Electric SESU is a module of Schneider Electric of France to optimize energy efficiency. There is a backlink loophole in Schneider Electric SESU, which stems from the inappropriate analysis of the link, which may lead to an increase in privileges or the denial of service.

Hazard Level

Medium

Vulnerability Type

后置链接

Affected Vendor

施耐德电气。

Published

2025-08-18

Last Modified

2026-02-24

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-224-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-224-03.pdf https://nvd.nist.gov/vuln/detail/CVE-2025-5296

Patch

https://www.se.com/ww/en/work/support/cybersecurity/security-notifications.jsp