Home
Description
CWE-20: Improper Input Validation vulnerability exists that could cause a Denial Of Service when specific crafted FTP command is sent to the device.
PUBLISHED Reserved 2025-06-25 | Published 2025-08-18 | Updated 2025-08-18 | Assigner schneider
HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Problem types
CWE-20 Improper Input Validation
Product status
Default status
unaffected
All versions
affected
Default status
unaffected
All versions
affected
Default status
unaffected
All versions
affected
Default status
unaffected
All versions
affected
Default status
unaffected
Versions prior to 3.60
affected
Default status
unaffected
Versions prior to 6.80
affected
References
download.schneider-electric.com/...Name=SEVD-2025-224-05.pdf
cve.org
(CVE-2025-6625)
nvd.nist.gov
(CVE-2025-6625)
Download JSON
