CVE-2021-22718

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when restoring project files...

CVE-2021-22719

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when a file is uploaded...

CVE-2021-22720

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when restoring a project...

CVE-2021-22748

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could allow a remote code execution when a file is saved. Affected Product: C-Bus Toolkit V1.15.9 and prior, C-Gate Server V2.11.7 and prior...

CVE-2021-22784

A CWE-306: Missing Authentication for Critical Function vulnerability exists in C-Bus Toolkit v1.15.8 and prior that could allow an attacker to use a crafted webpage to obtain remote access to the system...

EUVD-2021-9853

Malicious code in bioql PyPI...

EUVD-2021-9883

Malicious code in bioql PyPI...

EUVD-2021-9851

Malicious code in bioql PyPI...

EUVD-2021-9919

Malicious code in bioql PyPI...

EUVD-2021-9931

Malicious code in bioql PyPI...

CVE-2021-22796

A CWE-287: Improper Authentication vulnerability exists that could allow remote code execution when a malicious file is uploaded. Affected Product: C-Bus Toolkit V1.15.9 and prior, C-Gate Server V2.11.7 and prior...

CVE-2021-22717

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when processing config files...

Schneider Electric C-Bus Toolkit FileCommand Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FileCommand command. The issue results from the lack of proper...

Schneider Electric C-Bus Toolkit TransferCommand Exposed Dangerous Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TransferCommand command. The issue results from an exposed dangerou...

Schneider Electric SpaceLogic C-Bus Toolkit

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Schneider Electric Equipment : SpaceLogic C-Bus Toolkit Vulnerabilities : Improper Privilege Management, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

The software’s vulnerability in integrating the SpaceLogic system management system with the C-Bus SpaceLogic C-Bus Toolkit allows a intruder to execute arbitrary code. This vulnerability arises from the insecure handling of privileges, enabling the intruder to perform unauthorized actions.

The vulnerability of the SpaceLogic system integration software with the C-Bus SpaceLogic C-Bus Toolkit is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

The software’s vulnerability in integrating the SpaceLogic system management system with the C-Bus SpaceLogic C-Bus Toolkit allows unauthorized access to files by attackers, due to deficiencies in path name limitation.

The vulnerability of the SpaceLogic system integration software with the C-Bus SpaceLogic C-Bus Toolkit is related to deficiencies in path name limitation. Exploiting this vulnerability can allow an intruder to gain unauthorized access to files...

PT-2023-6039 · Schneider Electric · C-Bus Toolkit

Name of the Vulnerable Software and Affected Versions: Schneider Electric C-Bus Toolkit affected versions not specified Description: A path traversal issue exists due to improper limitation of a pathname to a restricted directory. This could cause tampering of files on the personal computer runni...

Schneider Electric C-Bus Toolkit Path Traversal Vulnerability

Schneider Electric C-Bus Toolkit is an application from Schneider Electric, France. It is used to run, configure and debug C-Bus installations on a personal computer. The Schneider Electric C-Bus Toolkit is vulnerable to a path traversal vulnerability that stems from the presence of a path...

The vulnerability of the C-Bus Toolkit software exists due to an incorrect limitation on the path name to the restricted access directory, allowing a perpetrator to execute arbitrary code.

The vulnerability of the C-Bus Toolkit software exists due to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...