Ecostruxure Power Build Rapsody
CVE-2025-13844
MEDIUM
Severity by source
AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Lifecycle Timeline
2DescriptionCVE.org
CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end user imports a malicious project file (SSD file) shared by the attacker into Rapsody.
AnalysisAI
CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end user imports a malicious project file (SSD file) shared by the attacker into Rapsody. [CVSS 5.3 MEDIUM]
Technical ContextAI
Affects Ecostruxure Power Build - Rapsody. CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end user imports a malicious project file (SSD file) shared by the attacker into Rapsody.
RemediationAI
Monitor vendor advisories for a patch.
Same weakness CWE-415 – Double Free
View allSame technique Memory Corruption
View allShare
External POC / Exploit Code
Leaving vuln.today