Vulnerability Description
A CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthenticated remote code execution when the server is accessed via the network with knowledge of hidden URLs and manipulation of host request header.
Related Weaknesses (CWE)
References
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-189-01&p_enDoc
- http://seclists.org/fulldisclosure/2025/Jul/10
FAQ
What is CVE-2025-50125?
CVE-2025-50125 is a documented vulnerability. A CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthenticated remote code execution when the server is accessed via the network with knowledge of hidden URLs a...
How severe is CVE-2025-50125?
CVSS scoring is not yet available for CVE-2025-50125. Check NVD for updates.
Is there a patch for CVE-2025-50125?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.