Schneider.Electric.Umotion.Runscript.Directory.Traversal
Description
This indicates an attack attempt against a Directory Traversal vulnerability in Schneider Electric U.motion Builder.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. A remote attacker may be able to exploit this to access arbitrary files on the system, via a crafted request.
Affected Products
Schneider Electric U.motion Builder 1.2.1 and prior
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-06-10 | 14.629 | Severity:high:critical |