NuytsTech Security

CVE-2017-7974

by ·

A path traversal information disclosure vulnerability exists in Schneider Electric’s U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can execute arbitrary code and exfiltrate files.

Date published : 2017-09-25

http://www.securityfocus.com/bid/99344

http://www.schneider-electric.com/en/download/document/SEVD-2017-178-01/

Tags: