CVE-2025-50123 is a vulnerability classified under CWE-94, indicating improper control over code generation, specifically code injection. It affects Schneider Electric's EcoStruxure™ IT Data Center Expert version 8.3. The flaw arises from insufficient validation or sanitization of the hostname input when accessed via the server console, allowing a privileged user to inject malicious code. This leads to remote command execution on the server, potentially compromising the entire system. The attack vector is partially network-based (AV:P), requiring low attack complexity (AC:L), privileged authentication (PR:H), and no user interaction (UI:N). The vulnerability impacts confidentiality, integrity, and availability at a high level (VC:H, VI:H, VA:H). The scope is limited (SI:L), and security requirements for attack success are high (SA:H). No public exploits or patches are currently available, but the risk is significant given the critical role of the product in managing data center infrastructure. The vulnerability could allow attackers to execute arbitrary commands, manipulate system configurations, disrupt operations, or exfiltrate sensitive data. The vulnerability's presence in a widely used data center management platform increases its potential impact on organizations relying on Schneider Electric's solutions for operational continuity and security.

For European organizations, the impact of CVE-2025-50123 is substantial, especially those operating critical data centers or industrial environments managed by Schneider Electric's EcoStruxure IT Data Center Expert. Successful exploitation could lead to unauthorized remote command execution, enabling attackers to disrupt data center operations, manipulate infrastructure controls, or access sensitive operational data. This could result in downtime, data breaches, or cascading failures affecting dependent services. Given the privileged access requirement, insider threats or compromised privileged accounts pose a significant risk vector. The high confidentiality, integrity, and availability impact could affect sectors such as finance, healthcare, energy, and manufacturing, where data center reliability and security are paramount. The lack of current patches increases exposure, necessitating immediate risk management. Additionally, disruption in critical infrastructure could have broader economic and societal consequences within Europe.

1. Restrict access to the EcoStruxure IT Data Center Expert console strictly to trusted, authenticated privileged users and enforce strong authentication mechanisms such as multi-factor authentication (MFA). 2. Implement network segmentation and firewall rules to limit console access to secure management networks only. 3. Monitor and log all console access and hostname input activities for unusual or unauthorized commands or patterns indicative of code injection attempts. 4. Apply strict input validation and sanitization controls on hostname inputs at the application level, if possible, through configuration or vendor guidance. 5. Maintain up-to-date backups and incident response plans tailored to data center management systems. 6. Engage with Schneider Electric for timely updates or patches and subscribe to their security advisories. 7. Conduct regular security assessments and penetration testing focusing on privileged access paths and input validation controls. 8. Educate privileged users on the risks of code injection and secure operational practices to reduce insider threat risks.