An improper link resolution vulnerability exists in Schneider Electric products that may allow a low-privileged attacker to manipulate the installation folder. This can lead to arbitrary data being written to protected locations, posing risks such as privilege escalation, potential corruption of files, exposure of sensitive system information, or even persistent denial of service. Organizations using these products should take immediate action to mitigate potential exploitation.
https://securityvulnerability.io/vulner ... -2025-5296