How severe is CVE-2025-50121?

The severity of CVE-2025-50121 has not been assessed with CVSS v3.

CVE-2025-50121

NONE

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause unauthenticated remote code execution when a malicious folder

Published: 7/11/2025Updated: 11/3/2025

Description

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause unauthenticated remote code execution when a malicious folder is created over the web interface HTTP when enabled. HTTP is disabled by default.

AI AnalysisPowered by AI

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-189-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-189-01.pdf
http://seclists.org/fulldisclosure/2025/Jul/6