Lucene search
K

5 matches found

Zero Day Initiative
Zero Day Initiative
added 2021/11/08 12:0 a.m.55 views

Schneider Electric C-Bus Toolkit CONFIG SAVE Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS9AI score0.01855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/07/19 12:0 a.m.57 views

Schneider Electric C-Bus Toolkit Missing Authentication Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Schneider Electric C-Bus Toolkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

6.5CVSS2.2AI score0.12083EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2021/04/22 12:0 a.m.43 views

Schneider Electric C-Bus Toolkit PROJECT RESTORE Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Schneider Electric C-Bus Toolkit. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS1.9AI score0.30534EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
added 2021/04/22 12:0 a.m.45 views

Schneider Electric C-Bus Toolkit ACCESS SAVE Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS4AI score0.38912EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2021/04/22 12:0 a.m.36 views

Schneider Electric C-Bus Toolkit FILE UPLOAD Unrestricted File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS3.4AI score0.40582EPSS
Exploits0References2
Rows per page
Query Builder