How severe is CVE-2020-7569?

CVE-2020-7569 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7569

Name: webreports
Author: schneider-electric

8.8HIGH

A CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists in EcoStruxure Building Operation WebReports V1.9 - V3.1 that could cause an authenticated remote user being able to uplo

Published: 11/19/2020Updated: 11/21/2024

Description

A CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists in EcoStruxure Building Operation WebReports V1.9 - V3.1 that could cause an authenticated remote user being able to upload arbitrary files due to incorrect verification of user supplied files and achieve remote code execution.

AI AnalysisPowered by AI

Affected Products

schneider-electricwebreports

References

https://www.se.com/ww/en/download/document/SEVD-2020-315-04/
PatchProductVendor Advisory
https://www.se.com/ww/en/download/document/SEVD-2020-315-04/
PatchProductVendor Advisory