Directory traversal vulnerability in SchneiderWEB on...
High severity
Unreviewed
Published
May 13, 2022
to the GitHub Advisory Database
•
Updated Aug 26, 2025
Description
Published by the National Vulnerability Database
Oct 3, 2014
Published to the GitHub Advisory Database
May 13, 2022
Last updated
Aug 26, 2025
Directory traversal vulnerability in SchneiderWEB on Schneider Electric Modicon PLC Ethernet modules 140CPU65x Exec before 5.5, 140NOC78x Exec before 1.62, 140NOE77x Exec before 6.2, BMXNOC0401 before 2.05, BMXNOE0100 before 2.9, BMXNOE0110x Exec before 6.0, TSXETC101 Exec before 2.04, TSXETY4103x Exec before 5.7, TSXETY5103x Exec before 5.9, TSXP57x ETYPort Exec before 5.7, and TSXP57x Ethernet Copro Exec before 5.5 allows remote attackers to visit arbitrary resources via a crafted HTTP request.
References