A path traversal information disclosure vulnerability exists in Schneider Electric’s U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can execute arbitrary code and exfiltrate files.
CPE | Name | Operator | Version |
---|---|---|---|
u.motion_builder | le | 1.2.1 |