ZDI-23-1797: Schneider Electric C-Bus Toolkit TransferCommand Exposed Dangerous Method Remote Code Execution Vulnerability - Cyber Security News

Read Time:13 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2023-5402.

More Stories

GLSA 202409-07: Rust: Multiple Vulnerabilities

Post Content Read More

September 22, 2024

GLSA 202409-06: file: Stack Buffer Overread

Post Content Read More

September 22, 2024

GLSA 202409-05: PJSIP: Heap Buffer Overflow

Post Content Read More

September 22, 2024

GLSA 202409-04: calibre: Multiple Vulnerabilities

Post Content Read More

September 22, 2024

GLSA 202409-03: GPL Ghostscript: Multiple Vulnerabilities

Post Content Read More

September 22, 2024

GLSA 202409-02: PostgreSQL: Privilege Escalation

Post Content Read More

September 22, 2024