2020-09-16 15:39:54
schneider
PUBLISHED
A CWE-22 Improper Limitation of a Pathname to a Restricted Directory (Path Transversal) vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place content in any unprotected folder on the target system using a crafted .RCZ file.