Lucene search
PRIOn knowledge basePRION:CVE-2023-27981HistoryMar 21, 2023 - 10:15 a.m.
Design/Logic Flaw
2023-03-2110:15:00
PRIOn knowledge base
www.prio-n.com
2
design/logic flaw
improper limitation
pathname restriction
remote code execution
custom reports
igss data server
igss dashboard
rms16.dll
vulnerability
nvd
cwe-22
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists in Custom Reports that could cause a remote code execution when a victim tries to open a malicious report. Affected Products: IGSS Data Server(IGSSdataServer.exe)(V16.0.0.23040 and prior), IGSS Dashboard(DashBoard.exe)(V16.0.0.23040 and prior), Custom Reports(RMS16.dll)(V16.0.0.23040 and prior).
| CPE | Name | Operator | Version |
|---|---|---|---|
| custom_reports | le | 16.0.0.23040 | |
| igss_dashboard | le | 16.0.0.23040 | |
| igss_data_server | le | 16.0.0.23040 |
Related
cvelist
cvelist
CVE-2023-27981
2023-03-21 00:00:00
zdi
zdi
cve
cve
CVE-2023-27981
2023-03-21 10:15:17
cnvd
cnvd
Schneider Electric IGSS Data Server Path Traversal Vulnerability
2023-03-20 00:00:00
nvd
nvd
CVE-2023-27981
2023-03-21 10:15:17
ics
ics
Schneider Electric IGSS
2023-03-23 12:00:00