CVE-2018-7233

CRITICAL

Schneider Electric Pelco Sarix Professional < 3.29.67 - OS Command Injection via model_name or mac_address Parameter

Title source: llm

Description

A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow execution of commands due to lack of validation of the shell meta characters with the value of 'model_name' or 'mac_address'.

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_confirm

https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/

Scores

CVSS v3 9.8

EPSS 0.0114

EPSS Percentile 78.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-20

Status published

Products (20)

schneider-electric/ibp1110-1er_firmware < 3.29.67

schneider-electric/ibp219-1er_firmware < 3.29.67

schneider-electric/ibp319-1er_firmware < 3.29.67

schneider-electric/ibp519-1er_firmware < 3.29.67

schneider-electric/ibps110-1er_firmware < 3.29.67

schneider-electric/imp1110-1_firmware < 3.29.67

schneider-electric/imp1110-1e_firmware < 3.29.67

schneider-electric/imp1110-1er_firmware < 3.29.67

schneider-electric/imp219-1_firmware < 3.29.67

schneider-electric/imp219-1e_firmware < 3.29.67

... and 10 more

Published Mar 09, 2018

Tracked Since Feb 18, 2026