GCVE - cpe:2.3:a:schweitzer_engineering_laboratories:sel_blueframe

Approved changes feed: RSS · Atom

cpe:2.3:a:schweitzer_engineering_laboratories:sel_blueframe_os:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Schweitzer Engineering Laboratories (`d1368798-4a69-5cdf-937e-18f5ef408253`)
Product	Sel Blueframe Os (`56398329-3895-57e1-8e5b-d5b8e90ab294`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-46749`	vulnerable	2026-06-03 15:01:27.926728	Improper Neutralization of Input MEDIUM (4.3) An authenticated user could submit scripting to fields that lack proper input and output sanitization leading to subsequent client-side script execution. Published: 2025-05-12T16:12:25.269Z Updated: 2025-05-12T17:38:23.392Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46748`	vulnerable	2026-06-03 15:01:27.926421	Unverified Password Change LOW (2.7) An authenticated user attempting to change their password could do so without using the current password. Published: 2025-05-12T16:12:07.018Z Updated: 2025-05-12T17:39:24.683Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46747`	vulnerable	2026-06-03 15:01:27.926098	Exposure of Sensitive System Information MEDIUM (5.7) An authenticated user without user-management permissions could identify other user accounts. Published: 2025-05-12T16:11:52.359Z Updated: 2025-05-12T17:48:19.190Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46746`	vulnerable	2026-06-03 15:01:27.925671	Error Message Contains Sensitive Information MEDIUM (5.8) An administrator could discover another account's credentials. Published: 2025-05-12T16:11:33.768Z Updated: 2025-05-12T17:50:17.015Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46745`	vulnerable	2026-06-03 15:01:27.925369	Improper Privilege Management MEDIUM (6.5) An authenticated user without user-management permissions could view other users account information. Published: 2025-05-12T16:11:08.840Z Updated: 2025-10-02T00:10:55.575Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46744`	vulnerable	2026-06-03 15:01:27.925146	Improper Privilege Management LOW (2.7) An authenticated administrator could modify the Created By username for a user account Published: 2025-05-12T16:10:29.888Z Updated: 2025-10-01T22:24:21.101Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46743`	vulnerable	2026-06-03 15:01:27.924910	Cross-Site Request Forgery MEDIUM (6.3) An authenticated user's token could be used by another source after the user had logged out prior to the token expiring. Published: 2025-05-12T16:14:05.722Z Updated: 2025-05-12T17:29:34.022Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46742`	vulnerable	2026-06-03 15:01:27.924566	Improper Access Control MEDIUM (4.3) Users who were required to change their password could still access system information before changing their password Published: 2025-05-12T16:10:09.527Z Updated: 2025-10-01T22:23:33.103Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46741`	vulnerable	2026-06-03 15:01:27.924241	Improper Privilege Management MEDIUM (5.7) A suspended or recently logged-out user could continue to interact with Blueframe until the time-out period occurred. Published: 2025-05-12T16:09:53.581Z Updated: 2025-10-01T21:46:34.900Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46740`	vulnerable	2026-06-03 15:01:27.923893	Improper Handling of Insufficient Permissions HIGH (7.5) An authenticated user without user administrative permissions could change the administrator Account Name. Published: 2025-05-12T16:09:22.036Z Updated: 2025-05-12T17:56:25.876Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46739`	vulnerable	2026-06-03 15:01:27.923564	Improper Restriction of Excessive Authentication Attempts HIGH (8.1) An unauthenticated user could discover account credentials via a brute-force attack without rate limiting Published: 2025-05-12T16:08:38.763Z Updated: 2025-05-12T17:57:08.901Z Open on db.gcve.eu Reference links https://selinc.com/products/software/latest-software-versions/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Sel Blueframe Os

PURL mappings

Vulnerability references

Contribute