CVE-2011-4036

CWE-22Path Traversal3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.5%
top 33.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Schneider-electric CitecthistorianSchneider-electric Citectscada ReportsSchneider-electric Vijeo Historian
Timeline
PublishedDec 2
Latest updateMay 17

Description

Directory traversal vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to read arbitrary files via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

🔴Vulnerability Details

2
GHSA
GHSA-72r8-82w3-5mc6: Directory traversal vulnerability in Schneider Electric Vijeo Historian 42022-05-17
CVEList
CVE-2011-4036: Directory traversal vulnerability in Schneider Electric Vijeo Historian 42011-12-02
CVE-2011-4036 (MEDIUM CVSS 5) | Directory traversal vulnerability i | cvebase.io