2 matches found
CVE-2020-7529
A CWE-22 Improper Limitation of a Pathname to a Restricted Directory 'Path Transversal' vulnerability exists in SCADAPack 7x Remote Connect V3.6.3.574 and prior which allows an attacker to place content in any unprotected folder on the target system using a crafted .RCZ file...
CVE-2020-7529
SCADAPack 7x Remote Connect (versions up to 3.6.3.574) contains a path traversal vulnerability (CWE-22) that lets an attacker craft an RCZ file to place content in any unprotected directory on the target system. Root cause: improper pathname handling allowing access outside a restricted directory...