3 matches found
Schneider Electric C-Bus Toolkit
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: C-Bus Toolkit Vulnerabilities: Improper Privilege Management, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow remote code...
CVE-2021-22718
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in C-Bus Toolkit V1.15.7 and prior that could allow a remote code execution when restoring project files...
CVE-2021-22718
Schneider Electric C-Bus Toolkit is affected by CVE-2021-22718 (Path Traversal). The Red Hat, NVD, and CVE ecosystem describe a CWE-22 path traversal flaw in C-Bus Toolkit versions 1.15.7 and earlier that could allow remote code execution when restoring project files. The ZDI advisory confirms co...