CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
A vulnerability exists in a function that could allow an attacker to create or overwrite critical files that are used to execute code, such as programs or libraries and cause path traversal attacks.

Risk Information

  • CVE ID
  • CVE-2022-22731
  • Vendor
  • Schneider Electric
  • Product
  • EcoStruxure Power Commission
  • CVSS v3
  • 6.5