CVE-2025-0327

HIGH

Windows Services - Privilege Escalation

Title source: llm

Description

CWE-269: Improper Privilege Management vulnerability exists for two services (of which one managing audit trail data and the other acting as server managing client request) that could cause a loss of Confidentiality, Integrity and Availability of engineering workstation when an attacker with standard privilege modifies the executable path of the windows services. To be exploited, services need to be restarted.

References (1)

Core 1

Core References

Various Sources

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-042-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-042-03.pdf

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 5.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-269

Status published

Products (4)

Schneider Electric/EcoStruxure Process Expert Versions 2021 & 2023 (prior to v4.8.0.5715)

Schneider Electric/EcoStruxure Process Expert Versions 2020R2

Schneider Electric/EcoStruxure Process Expert for AVEVA System Platform Versions 2021 & 2023

Schneider Electric/EcoStruxure Process Expert for AVEVA System Platform Versions 2020R2

Published Feb 13, 2025

Tracked Since Feb 18, 2026