CVE-2025-46744 LOW

CVE-2025-46744: Improper Privilege Management

Vendor Schweitzer Engineering Laboratories
Product SEL Blueframe OS
Weakness CWE-863 · Incorrect authorization
Published May 12, 2025
Last update October 1, 2025
View on NVD All CVEs

CVSS base score

2.7/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

An authenticated administrator could modify the Created By username for a user account

Key dates

02Disclosure timeline

May 12, 2025 CVE published
October 1, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-42939 Missing Authorization Check in SAP S/4HANA (Manage Processing Rules - For Bank Statements) CVE-2026-6713 Incorrect Authorization in GitLab CVE-2025-14943 Blog2Social: Social Media Auto Post & Scheduler <= 8.7.2 - Incorrect Authorization to Authenticated (Subscriber+) Sensitive Information Exposure CVE-2024-12862 REST API allows users without permissions to remove external collaborators CVE-2025-30163 Node based network policies may incorrectly allow workload traffic