2 matches found
CVE-2020-7569
A CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists in EcoStruxure Building Operation WebReports V1.9 - V3.1 that could cause an authenticated remote user being able to upload arbitrary files due to incorrect verification of user supplied files and achieve remote code...
CVE-2020-7569
Summary (CVE-2020-7569) : EcoStruxure Building Operation WebReports (versions 1.9–3.1) are affected by CWE-434 Unrestricted Upload of File with Dangerous Type. An authenticated remote user could upload arbitrary files due to improper verification of user-supplied files, potentially enabling remot...