CVE-2025-13957

Vulnerability Description

CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause information disclosure and remote code execution when SOCKS Proxy is enabled, and administrator credentials and PostgreSQL database credentials are known. SOCKS Proxy is disabled by default.

Related Weaknesses (CWE)

CWE-798

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-069-05&p_enDoc

FAQ

What is CVE-2025-13957?

CVE-2025-13957 is a documented vulnerability. CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause information disclosure and remote code execution when SOCKS Proxy is enabled, and administrator credentials and PostgreSQL ...

How severe is CVE-2025-13957?

CVSS scoring is not yet available for CVE-2025-13957. Check NVD for updates.

Is there a patch for CVE-2025-13957?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.