Directory Traversal Vulnerability in Schneider Electric Vijeo Historian and Citect Products
CVE-2011-4036

Currently unrated

Key Information:

Vendor: Schneider Electric
Status: Vijeo Historian
Vendor: CVE Published:; 2 December 2011

Summary

The directory traversal vulnerability in Schneider Electric's Vijeo Historian and related products allows remote attackers to access sensitive files on the system. This could lead to unauthorized reading of arbitrary files, potentially exposing critical information. Attackers exploit unspecified vectors to navigate the file structure, posing a significant risk to the integrity and confidentiality of the system's data.

References

http://www.scada.schneider-electric.com/sites/scada/en/lo...

x_refsource_CONFIRM

http://www.us-cert.gov/control_systems/pdf/ICSA-11-307-01...

x_refsource_MISC

http://www.citect.com/index.php?option=com_content&view=a...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 2, 2011