Описание
The HMISimulator component of ABB PB610 Panel Builder 600 uses the readFile/writeFile interface to manipulate the work file. Path configuration in PB610 HMISimulator versions 2.8.0.424 and earlier potentially allows access to files outside of the working directory, thus potentially supporting unauthorized file access.
Уязвимые конфигурации
Конфигурация 1Версия до 2.8.0.424 (включая)
cpe:2.3:a:abb:pb610_panel_builder_600:*:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00282
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-424
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
The HMISimulator component of ABB PB610 Panel Builder 600 uses the readFile/writeFile interface to manipulate the work file. Path configuration in PB610 HMISimulator versions 2.8.0.424 and earlier potentially allows access to files outside of the working directory, thus potentially supporting unauthorized file access.
EPSS
Процентиль: 51%
0.00282
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-424
NVD-CWE-noinfo