How severe is CVE-2025-2875?

CVE-2025-2875 has a CVSS v3 score of 7.5 (HIGH).

CVE-2025-2875

7.5HIGH

CWE-610: Externally Controlled Reference to a Resource in Another Sphere vulnerability exists that could cause a loss of confidentiality when an unauthenticated attacker manipulates controller’s webse

Published: 5/14/2025Updated: 5/16/2025

Description

CWE-610: Externally Controlled Reference to a Resource in Another Sphere vulnerability exists that could cause a loss of confidentiality when an unauthenticated attacker manipulates controller’s webserver URL to access resources.

AI AnalysisPowered by AI

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-133-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-133-01.pdf