- Description
- CWE-269: Improper Privilege Management vulnerability exists for two services (of which one managing audit trail data and the other acting as server managing client request) that could cause a loss of Confidentiality, Integrity and Availability of engineering workstation when an attacker with standard privilege modifies the executable path of the windows services. To be exploited, services need to be restarted.
- Source
- cybersecurity@se.com
- NVD status
- Received
CVSS 4.0
- Type
- Secondary
- Base score
- 8.5
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- cybersecurity@se.com
- CWE-269
- Hype score
- Not currently trending
CVE-2025-0327 (CVSS:8.5, HIGH) is Awaiting Analysis. CWE-269: Improper Privilege Management vulnerability exists for two services (of which one managing audit trail data and..https://t.co/Uzhc50Vwtc #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
18 Feb 2025
15 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
๐จ CVE-2025-0327 ๐ด HIGH (8.5) ๐ข Schneider Electric - EcoStruxure Process Expert ๐๏ธ Versions 2020R2 ๐ https://t.co/VzVuOqgCbI #CyberCron #VulnAlert https://t.co/ywrymTKNYR
@cybercronai
13 Feb 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes