2 matches found
CVE-2023-27976
A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that could cause remote code execution when a valid user visits a malicious link provided through the web endpoints. Affected Products: EcoStruxure Control Expert V15.1 and above...
CVE-2023-27976
CVE-2023-27976 concerns Schneider Electric EcoStruxure Control Expert (V15.1 and above). The vulnerability is described as CWE-668: Exposure of Resource to Wrong Sphere, where a resource is exposed to the wrong field/sphere, enabling remote code execution when a valid user visits a malicious link...