CVE-2025-54925_CVE-2025-54925

{
    "lastseen": "",
    "description": "CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker configures the application to access a malicious url.",
    "published": "2025-08-20T13:44:21.662Z",
    "modified": "2025-08-20T13:44:21.662Z",
    "type": "cve",
    "title": "CVE-2025-54925",
    "source": "schneider",
    "references": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-224-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-224-02.pdf",
    "id": "CVE-2025-54925",
    "bulletinFamily": "",
    "cwe": [
        "CWE-918"
    ],
    "cvelist": null,
    "sourceData": "Schneider Electric EcoStruxure\u2122 Power Monitoring Expert (PME) Version 2022\nSchneider Electric EcoStruxure\u2122 Power Monitoring Expert (PME) Version 2023\nSchneider Electric EcoStruxure\u2122 Power Monitoring Expert (PME) Version 2024\nSchneider Electric EcoStruxure\u2122 Power Monitoring Expert (PME) Version 2024 R2\nSchneider Electric EcoStruxure\u2122 Power Operation (EPO) Advanced Reporting and Dashboards Module Version 2022 w/ Advanced Reporting Module\nSchneider Electric EcoStruxure\u2122 Power Operation (EPO) Advanced Reporting and Dashboards Module Version 2024 w/ Advanced Reporting Module",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "EcoStruxure\u2122 Power Monitoring Expert (PME)",
    "version": "Version 2022",
    "vendor": "Schneider Electric",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}