N/A

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists in Harmony/HMI Products Configured by Vijeo Designer (all versions prior to V6.2 SP11 ), Vijeo Designer Basic (all versions prior to V1.2), or EcoStruxure Machine Expert (all versions prior to V2.0) that could cause a Denial of Service or unauthorized access to system information when connecting to the Harmony HMI over FTP.

N/A

对路径名的限制不恰当(路径遍历)

多款 Schneider Electric 产品路径遍历漏洞

Schneider Electric EcoStruxure Machine Expert–Basic等都是法国施耐德电气（Schneider Electric）公司的产品。Schneider Electric EcoStruxure Machine Expert–Basic是一款PLC配置应用程序。Schneider Electric Vijeo Designer Basic是一套用于HMI（人机界面）的编程和设计软件。Schneider Electric Vijeo Designer是一套用于HMI（

N/A

N/A