CVE-2023-31175

Summary

An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator could allow an attacker to run system commands with the highest level privilege on the system.

See Instruction Manual Appendix A and Appendix E dated 20230615 for more details.

This issue affects SEL-5037 SEL Grid Configurator: before 4.5.0.20.

Affected Software

VendorProductVersion RangeStatus
Schweitzer Engineering LaboratoriesSEL-5037 SEL Grid Configurator0 < 4.5.0.20affected

Weaknesses

  • CWE-250: CWE-250 Execution with Unnecesary Privileges

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References