VYPR
High severity7.5NVD Advisory· Published Mar 26, 2024· Updated Jun 17, 2026

CVE-2024-25136

CVE-2024-25136

Description

There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.