Filtered by vendor Schneider-electric Subscriptions
Filtered by product Struxureon Gateway Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-9970 1 Schneider-electric 1 Struxureon Gateway 2024-11-21 N/A
A remote code execution vulnerability exists in Schneider Electric's StruxureOn Gateway versions 1.1.3 and prior. Uploading a zip which contains carefully crafted metadata allows for the file to be uploaded to any directory on the host machine information which could lead to remote code execution.