User Account Manipulation in Software by SEL
CVE-2025-46744

2.7LOW

Key Information:

Vendor: Schweitzer Engineering Laboratories
Status: Sel Blueframe Os
Vendor: CVE Published:; 12 May 2025

🔔 Create Schweitzer Engineering Laboratories Vulnerability Alert

What is CVE-2025-46744?

An authenticated administrator with access to SEL Software can change the 'Created By' username on user accounts, potentially leading to unauthorized control over account identification and associated permissions. This issue may create risks for accountability and could facilitate social engineering attacks.

Affected Version(s)

SEL Blueframe OS 0 < 1.12.0

References

https://selinc.com/products/software/latest-software-vers...

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2025
Vulnerability Reserved
Apr 28, 2025