CVE-2025-13844
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-13844
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end user imports a malicious project file (SSD file) shared by the attacker into Rapsody.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
双重释放
Source: NVD (National Vulnerability Database)
Vulnerability Title
Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Schneider Electric EcoStruxure Power Build Rapsody是法国施耐德电气(Schneider Electric)公司的一个电源监控平台。 Schneider Electric EcoStruxure Power Build Rapsody存在资源管理错误漏洞,该漏洞源于导入恶意SSD文件时存在双重释放问题,可能导致堆内存损坏。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Schneider Electric | EcoStruxure Power Build Rapsody | FR v2.8.1 and prior | - |
II. Public POCs for CVE-2025-13844
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-13844
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: Schneider Electric
- CVE-2026-2401
Schneider Electric PowerChute Serial Shutdown 日志信息泄露漏洞 - CVE-2026-2400
Schneider Electric PowerChute Serial Shutdown 注入漏洞 - CVE-2026-2403
Schneider Electric PowerChute Serial Shutdown 安全漏洞 - CVE-2026-2405
Schneider Electric PowerChute Serial Shutdown 资源管理错误漏洞 - CVE-2026-2402
Schneider Electric PowerChute Serial Shutdown 安全漏洞
Same weakness: CWE-415
- CVE-2026-23918
Apache HTTP Server: http2: double free and possible RCE on e - CVE-2026-5657
Double Free in Wireshark - CVE-2026-33824
Windows Internet Key Exchange (IKE) Service Extensions Remot - CVE-2026-32074
Windows Projected File System Elevation of Privilege Vulnera - CVE-2026-32069
Windows Projected File System Elevation of Privilege Vulnera
V. Comments for CVE-2025-13844
No comments yet