← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-7841 — Actively Exploited: U.motion Builder (Schneider Electric)

A SQL Injection vulnerability exists in U.motion Builder software which could cause unwanted code execution when an improper set of characters is entered.

CVE IDCVE-2018-7841
VendorSchneider Electric
ProductU.motion Builder
Vulnerability nameSchneider Electric U.motion Builder SQL Injection Vulnerability
Date added2022-04-15
Remediation due2022-05-06
Known ransomware useUnknown
Required actionThe impacted product is end-of-life and should be disconnected if still in use.
DescriptionA SQL Injection vulnerability exists in U.motion Builder software which could cause unwanted code execution when an improper set of characters is entered.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →