CVE-2018-7841 — Actively Exploited: U.motion Builder (Schneider Electric)
A SQL Injection vulnerability exists in U.motion Builder software which could cause unwanted code execution when an improper set of characters is entered.
| CVE ID | CVE-2018-7841 |
|---|---|
| Vendor | Schneider Electric |
| Product | U.motion Builder |
| Vulnerability name | Schneider Electric U.motion Builder SQL Injection Vulnerability |
| Date added | 2022-04-15 |
| Remediation due | 2022-05-06 |
| Known ransomware use | Unknown |
| Required action | The impacted product is end-of-life and should be disconnected if still in use. |
| Description | A SQL Injection vulnerability exists in U.motion Builder software which could cause unwanted code execution when an improper set of characters is entered. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →