CVE-2018-7787

CVE-2018-7787

EPSS 1.1%

In Schneider Electric U.motion Builder software versions prior to v1.3.4, this vulnerability is due to improper validation of input of context parameter in HTTP GET request.

Affected products

Schneider Electric SE · U.motion Builder

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.schneider-electric.com/en/download/document/SEVD-2018-151-01/http://www.securityfocus.com/bid/104447