CVE-2025-50123 Information

Description

CWE-94: Improper Control of Generation of Code (‘Code Injection’) vulnerability exists that could cause remote command execution by a privileged account when the server is accessed via a console and through exploitation of the hostname input.

Reference

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-189-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-189-01.pdf

Related CNNVD

CNNVD-202507-1640 (Published: 2025-07-11)