Vulnerabilities > Schneider Electric > C BUS Toolkit > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2021-22748 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit 1.15.8/1.15.9 A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could allow a remote code execution when a file is saved. | 6.5 |
| 2021-04-13 | CVE-2021-22720 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring a project. | 6.5 |
| 2021-04-13 | CVE-2021-22719 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when a file is uploaded. | 6.5 |
| 2021-04-13 | CVE-2021-22718 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring project files. | 6.8 |
| 2021-04-13 | CVE-2021-22717 | Path Traversal vulnerability in Schneider-Electric C-Bus Toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when processing config files. | 6.5 |