Vulnerabilities > Schneider Electric > C BUS Toolkit > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2021-22748 | Unspecified vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7/1.15.8 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow a remote code execution when a file is saved. | 8.8 |
| 2021-04-13 | CVE-2021-22720 | Unspecified vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring a project. | 7.2 |
| 2021-04-13 | CVE-2021-22719 | Unspecified vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when a file is uploaded. | 8.8 |
| 2021-04-13 | CVE-2021-22718 | Unspecified vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring project files. | 7.8 |
| 2021-04-13 | CVE-2021-22717 | Unspecified vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when processing config files. | 8.8 |
| 2021-04-13 | CVE-2021-22716 | Unspecified vulnerability in Schneider-Electric C-Bus Toolkit 1.15.7 A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could allow remote code execution when an unprivileged user modifies a file. | 7.8 |