CVE-2025-13905

Vulnerability Description

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart.

Related Weaknesses (CWE)

CWE-276

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-013-02&p_enDoc

FAQ

What is CVE-2025-13905?

CVE-2025-13905 is a documented vulnerability. CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installat...

How severe is CVE-2025-13905?

CVSS scoring is not yet available for CVE-2025-13905. Check NVD for updates.

Is there a patch for CVE-2025-13905?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.