A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Transversal') vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an malicious user to place content in any unprotected folder on the target system using a crafted .RCZ file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
schneider-electric scadapack 7x remote connect |