N/A

CWE-59: Improper Link Resolution Before File Access ('Link Following') vulnerability exists that could cause arbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary file corruption, exposure of application and system information or persistent denial of service when a low-privileged attacker tampers with the installation folder.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

在文件访问前对链接解析不恰当(链接跟随)

Schneider Electric SESU 后置链接漏洞

Schneider Electric SESU是法国施耐德电气（Schneider Electric）公司的一个用于优化能源使用效率的模块。 Schneider Electric SESU存在后置链接漏洞，该漏洞源于链接解析不当，可能导致权限提升或拒绝服务。

N/A

N/A