2 matches found
CVE-2021-22771
A CWE-1236: Improper Neutralization of Formula Elements in a CSV File vulnerability exists in Easergy T300 with firmware V2.7.1 and older that would allow arbitrary command execution...
CVE-2021-22771
CVE-2021-22771 affects Schneider Electric’s Easergy T300 (firmware ≤ 2.7.1). The root cause is an improper neutralization of formula elements in a CSV file, enabling arbitrary command execution. Affected product/version details are confirmed by multiple sources (NVD, Red Hat, CVE lists, CNNVD). T...