A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by inserting at beginning of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: schneider

Published: 2022-02-09T22:04:58

Updated: 2024-08-03T04:07:02.449Z

Reserved: 2022-02-02T00:00:00

Link: CVE-2022-24311

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-02-09T23:15:19.697

Modified: 2024-11-21T06:50:08.897

Link: CVE-2022-24311

cve-icon Redhat

No data.