CVE-2025-48397 — HIGH (7.1)

Vulnerability Description

The privileged user could log in without sufficient credentials after enabling an application protocol. This security issue has been fixed in the latest script patch latest version of of Eaton BLSS (7.3.0.SCP004).

CVSS Score

7.1

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Related Weaknesses (CWE)

CWE-306

References

https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/secu

FAQ

What is CVE-2025-48397?

CVE-2025-48397 is a vulnerability with a CVSS score of 7.1 (HIGH). The privileged user could log in without sufficient credentials after enabling an application protocol. This security issue has been fixed in the latest script patch latest version of of Eaton BLSS (7...

How severe is CVE-2025-48397?

CVE-2025-48397 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-48397?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.