N/A

mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead to code execution.

N/A

N/A

MyScada MyDesigner 路径遍历漏洞

MyScada MyDesigner是捷克MyScada公司的一个用于创建可视化的快速开发平台。 mySCADA myDESIGNER 8.20.0 及以下版本存在安全漏洞，如果攻击者可以诱使受害者导入恶意的 mep 文件，那么他们就可以将任意文件写入用户具有权限的操作系统位置。这通常会导致代码执行。

N/A

N/A