6 matches found
CVE-2021-22717
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when processing config files...
Schneider Electric C-Gate < 2.11.6 Multiple Vulnerabilities
Binary data schneiderelectriccgateicsa-21-105-01.nbin...
Schneider Electric C-Bus Toolkit
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: C-Bus Toolkit Vulnerabilities: Improper Privilege Management, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow remote code...
CVE-2021-22717
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when processing config files...
CVE-2021-22717
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when processing config files...
CVE-2021-22717
The CVE-2021-22717 issue affects Schneider Electric C-Bus Toolkit (V1.15.7 and earlier). The root cause is a Path Traversal vulnerability in how config files are processed, enabling remote code execution. Public disclosures (ZDI, Red Hat, CNVD, NVD, CISA) identify impact as remote code execution ...