Unrated severityNVD Advisory· Published Oct 27, 2021· Updated Sep 16, 2024
Trane Tracer Code Injection
CVE-2021-38450
Description
The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software.
Affected products
2- Range: All
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- us-cert.cisa.gov/ics/advisories/icsa-21-266-02mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.