OpenFlow Discovery Protocol Resource Exhaustion in SEL-4740 Software
CVE-2025-48016

4.3MEDIUM

Key Information:

Vendor: Schweitzer Engineering Laboratories
Status: Sel-5056 Software-defined Network Flow Controller
Vendor: CVE Published:; 20 May 2025

🔔 Create Schweitzer Engineering Laboratories Vulnerability Alert

What is CVE-2025-48016?

The OpenFlow discovery protocol in SEL-4740 Software lacks proper rate limiting mechanisms, allowing for excessive resource consumption. This can lead to degraded performance or potential service disruption. Network administrators should be aware of this issue to implement necessary safeguards and monitor resources effectively.

Affected Version(s)

SEL-5056 Software-Defined Network Flow Controller SEL Blueframe 0 < 2.16.0

SEL-5056 Software-Defined Network Flow Controller Windows 0 < 2.16.0

References

https://selinc.com/products/software/latest-software-vers...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2025
Vulnerability Reserved
May 15, 2025