Unrated severityNVD Advisory· Published Feb 9, 2022· Updated Aug 3, 2024
CVE-2022-24312
CVE-2022-24312
Description
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by adding at end of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Interactive Graphical SCADA System Data Server/Interactive Graphical SCADA System Data Serverdescription
- Range: <=15.0.0.22020
Patches
Vulnerability mechanics
References
2- download.schneider-electric.com/filesmitrex_refsource_MISC
- www.zerodayinitiative.com/advisories/ZDI-22-321/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.