Information Disclosure Vulnerability in Schneider Electric U.motion Builder Software

Information Disclosure Vulnerability in Schneider Electric U.motion Builder Software

CVE-2017-9960 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An information disclosure vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which the system response to error provides more information than should be available to an unauthenticated user.

Learn more about our User Device Pen Test.