2 matches found
CVE-2018-7784
In Schneider Electric U.motion Builder software versions prior to v1.3.4, this exploit occurs when the submitted data of an input string is evaluated as a command by the application. In this way, the attacker could execute code, read the stack, or cause a segmentation fault in the running...
CVE-2018-7784
Schneider Electric U.motion Builder is affected in versions prior to 1.3.4. The root cause is that certain input string data may be evaluated as a command by the application, potentially allowing remote code execution, reading the stack, or causing segmentation faults. A firmware patch to 1.3.4 h...