Pathname Limitation Flaw in Circuit Provisioning and File Import Applications by SEL
CVE-2025-48017

9CRITICAL

What is CVE-2025-48017?

A vulnerability has been identified in SEL's Circuit Provisioning and File Import applications, which stems from an improper limitation of pathname. This flaw allows unauthorized individuals to modify existing files and upload new ones. Such exploitation could lead to significant security risks, potentially compromising system integrity and exposing sensitive information.

Affected Version(s)

SEL-5056 Software-Defined Network Flow Controller Windows 0 < 2.16.0

References

CVSS V3.1

Score:
9
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-48017 : Pathname Limitation Flaw in Circuit Provisioning and File Import Applications by SEL