CVE-2025-27254

Publication date

2025-03-10 09:05:08

Family

Nozomi

State

PUBLISHED

Description

CWE-282 "Improper Ownership Management" in GE Vernova EnerVista UR Setup allows Authentication Bypass.  The softwares startup authentication can be disabled by altering a Windows registry setting that any user can modify.