Medium severity5.3NVD Advisory· Published Jul 3, 2018· Updated Jun 17, 2026
CVE-2018-7787
CVE-2018-7787
Description
In Schneider Electric U.motion Builder software versions prior to v1.3.4, this vulnerability is due to improper validation of input of context parameter in HTTP GET request.
Affected products
2<1.3.4+ 1 more
- (no CPE)range: <1.3.4
- (no CPE)range: U.motion Builder, all versions prior to 1.3.4
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/104447nvdThird Party AdvisoryVDB Entry
- www.schneider-electric.com/en/download/document/SEVD-2018-151-01/nvdVendor Advisory
News mentions
0No linked articles in our index yet.