RCE in Schneider Electric Saitel Dp Rtu
CVE-2025-9996
CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause the execution of any shell command when executing a netstat command using BLMon Console in an SSH sess…
Vulnerability class: Command Injection (OS Command Injection)
EPSS: 0.005 (41.2th percentile) — read the EPSS interpretation.
Affected products
- Schneider Electric Saitel Dp Rtu — versions all versions
- Schneider Electric Saitel Dr Rtu — versions all versions