Path Traversal Vulnerability in EcoStruxure Operator Terminal Expert by Schneider Electric
CVE-2020-7497
9.8CRITICAL
What is CVE-2020-7497?
A path traversal vulnerability exists in EcoStruxure Operator Terminal Expert, which may allow attackers to execute arbitrary applications upon system startup. This flaw can potentially be exploited to manipulate file paths, leading to unauthorized access and execution of malicious code. Users are advised to apply necessary updates and patches to mitigate this issue.
Affected Version(s)
EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD)