User Account Manipulation in Software by SEL
CVE-2025-46744

2.7LOW

Key Information:

Vendor: Schweitzer Engineering Laboratories
Status: Sel Blueframe Os
Vendor: CVE Published:; 12 May 2025

What is CVE-2025-46744?

An authenticated administrator with access to SEL Software can change the 'Created By' username on user accounts, potentially leading to unauthorized control over account identification and associated permissions. This issue may create risks for accountability and could facilitate social engineering attacks.

Affected Version(s)

SEL Blueframe OS 0 < 1.12.0

References

https://selinc.com/products/software/latest-software-vers...

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 12, 2025
Vulnerability Reserved
Apr 28, 2025

Schweitzer Engineering Laboratories

What is CVE-2025-46744?

Affected Version(s)

References

CVSS V3.1

Timeline