Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability

A high-severity remote code execution vulnerability (CVE-2025-13845) has been discovered in Schneider Electric EcoStruxure Power Build that allows attackers to execute arbitrary code if users are tricked into visiting a malicious webpage or opening a malicious file. With a CVSS score of 7.8, this vulnerability poses a significant risk to organizations using this industrial control software. Security teams should prioritize patching this application, implement user awareness training to prevent social engineering attacks, and consider restricting access to the software where possible.