cbcvebase.
CVE-2024-37037
published 2024-06-12

CVE-2024-37037: CWE-22: Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability exists that could allow an authenticated user with access…

high8.1CVSS 3.1
AVNACLPRLUINSUCNIHAH
CWE-22: Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability exists that could allow an authenticated user with access to the device’s web interface to corrupt files and impact device functionality when sending a crafted HTTP request.

Affected

7 ranges
VendorProductVersion rangeFixed in
schneider-electricsage_rtu_firmware< c3414-500-s02k5_p9c3414-500-s02k5_p9
schneider_electricsage_1410
schneider_electricsage_1430
schneider_electricsage_1450
schneider_electricsage_2400
schneider_electricsage_3030_magnum
schneider_electricsage_4400