A vulnerability exists in Schneider Electricβs Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow arbitrary system file download due to lack of validation of SSL certificate.
[
{
"product": "Pelco Sarix Professional",
"vendor": "Schneider Electric SE",
"versions": [
{
"status": "affected",
"version": "all firmware versions prior to 3.29.74"
}
]
}
]