CVE-2025-54927
CVE-2025-54927 concerns Schneider Electric EcoStruxure Power Monitoring Expert. The issue is a directory traversal via the HttpPostedFile module that could enable remote code execution. Exploitation requires authentication and is demonstrated in public advisories (e.g., ZDI-25-828) with attacker-...