← Back

Simatic Easie Pcs 7 Skill

simatic_easie_pcs_7_skill

Vendor: Siemens • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-42022
1Siemens
1Simatic Easie Pcs 7 Skill
Jun 17, 2026
Dec 14, 2021
N/A· v4
6.5 MEDIUM· v3
3.5 LOW· v2
A vulnerability has been identified in SIMATIC eaSie PCS 7 Skill Package (All versions < V21.00 SP3). When downloading files, the affected systems do not properly neutralize special elements within the pathname. An attac...Show more
A vulnerability has been identified in SIMATIC eaSie PCS 7 Skill Package (All versions < V21.00 SP3). When downloading files, the affected systems do not properly neutralize special elements within the pathname. An attacker could then cause the pathname to resolve to a location outside of the restricted directory on the server and read unexpected critical files. The affected file download function is disabled by default.Show less