An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface could allow a remote authenticated attacker to create folders in arbitrary paths of the file system.
See SEL Service Bulletin dated 2022-11-15 for more details.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: SEL
Published: 2023-05-10T19:25:59.606Z
Updated: 2024-08-02T14:45:25.866Z
Reserved: 2023-04-24T23:19:33.137Z
Link: CVE-2023-31166
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-05-10T20:15:11.537
Modified: 2024-11-21T08:01:32.503
Link: CVE-2023-31166
Redhat
No data.