CVE-2025-9997

🗓️ 09 Sep 2025 21:12:35Reported by schneiderType

CVE-2025-9997 enables OS command injection in BLMon via a secure shell session at the OS console.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-9997	10 Sep 202501:46	–	circl
CNNVD	Schneider Electric Saitel DR RTU 操作系统命令注入漏洞	9 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-9997	9 Sep 202521:12	–	cvelist
EUVD	EUVD-2025-27614	3 Oct 202520:07	–	euvd
ICS	Schneider Electric Saitel DR & Saitel DP Remote Terminal Unit	18 Sep 202506:00	–	ics
NCSC	Vulnerabilities fixed in Schneider Electric Saitel	9 Sep 202515:16	–	ncsc
NVD	CVE-2025-9997	9 Sep 202522:15	–	nvd
Positive Technologies	PT-2025-36979	9 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-9997	11 Sep 202521:30	–	redhatcve
Vulnrichment	CVE-2025-9997	9 Sep 202521:12	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Saitel DR RTU",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "lessThanOrEqual": "11.06.29",
        "status": "affected",
        "version": "all versions",
        "versionType": "version"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Saitel DP RTU",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "lessThanOrEqual": "11.06.33",
        "status": "affected",
        "version": "all versions",
        "versionType": "version"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

15 Apr 2026 00:35Current

7.1High risk

Vulners AI Score7.1

CVSS 45.8

EPSS0.00088

SSVC

CWE-78