Security Advisory

CVE-2024-25136

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-26 22:53:41

Last updated 2024-08-08 14:49:09

Assigner icscert

State PUBLISHED

Description

There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a relative path in the URL without proper sanitizing of the content.

← Browse all CVEs View on cve.org ↗