Cross-Site Scripting Vulnerability in SEL-202 Software by SEL
CVE-2025-46749

4.3MEDIUM

Key Information:

Vendor: Schweitzer Engineering Laboratories
Status: Sel Blueframe Os
Vendor: CVE Published:; 12 May 2025

What is CVE-2025-46749?

An authenticated user can exploit a vulnerability in SEL-202 Software, allowing them to inject scripting content into fields that do not employ adequate input and output sanitization. This flaw can lead to unauthorized client-side script execution, posing significant security risks.

Affected Version(s)

SEL Blueframe OS 0 < 1.10.0

References

https://selinc.com/products/software/latest-software-vers...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 12, 2025
Vulnerability Reserved
Apr 28, 2025

Schweitzer Engineering Laboratories

What is CVE-2025-46749?

Affected Version(s)

References

CVSS V3.1

Timeline