Medium
An attacker could exploit an SQL injection vulnerability by enticing a user to open a maliciously crafted project file.
An attacker could exploit this path traversal vulnerability by getting a user to visit a malicious page or open a malicious file.
An attacker could exploit this path traversal vulnerability by getting a user to visit a malicious page or open a malicious file.
A remote attacker can trick a victim to open a specially crafted project file and gain unauthorized write access to the target system.
A vulnerability exists that could cause arbitrary application execution when the computer starts.
Schneider Electric
EcoStruxure Operator Terminal Expert 3.1 Service Pack 1
Schneider Electric recommends users update to EcoStruxure Operator Terminal Expert Version 3.1 Service Pack 1A.