Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-7777

CWE-20 — Improper Input Validation4 documents4 sources

Severity

8.8HIGH

EPSS

15.8%

top 5.26%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Schneider-electric U.motion Builder Schneider Electric SE U.motion

Timeline

PublishedJul 3

Latest updateMay 13

Description

The vulnerability is due to insufficient handling of update_file request parameter on update_module.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. A remote, authenticated attacker can exploit this vulnerability by sending a crafted request to the target server.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDschneider-electric/u.motion_builder< 1.3.4

▶CVEListV5schneider_electric_se/u.motionU.motion Builder Software, all versions prior to v1.3.4

🔴Vulnerability Details

GHSA

GHSA-w7gw-jv4v-mw2x: The vulnerability is due to insufficient handling of update_file request parameter on update_module↗2022-05-13

▶

CVEList

CVE-2018-7777: The vulnerability is due to insufficient handling of update_file request parameter on update_module↗2018-07-03

▶

💥Exploits & PoCs

Exploit-DB

Schneider Electric U.Motion Builder 1.3.4 - Authenticated Command Injection↗2020-02-03

▶