CVE-2017-7974

EPSS 7.80% · P92 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-7974

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A path traversal information disclosure vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can execute arbitrary code and exfiltrate files.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Schneider Electric U.motion Builder软件路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Schneider Electric U.motion Builder software是法国施耐德电气（Schneider Electric）公司的一套为U.motion（楼宇自动化管理设备）创建自动化程序的工具。 Schneider Electric U.motion Builder软件1.2.1及之前的版本中存在路径遍历漏洞。远程攻击者可利用该漏洞执行任意代码，获取信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Schneider Electric SE	U.Motion	U.motion Builder Versions 1.2.1 and prior.	-

II. Public POCs for CVE-2017-7974

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-7974

Please Login to view more intelligence information

http://www.schneider-electric.com/en/download/document/SEVD-2017-178-01/x_refsource_CONFIRM
http://www.securityfocus.com/bid/99344vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2017-7974

Same Patch Batch · Schneider Electric SE · 2017-09-25 · 12 CVEs total

CVE-2017-7969		Schneider Electric PowerSCADA Anywhere和Citect Anywhere 跨站脚本漏洞
CVE-2017-7970		Schneider Electric PowerSCADA Anywhere和Citect Anywhere 安全漏洞
CVE-2017-7971		Schneider Electric PowerSCADA Anywhere和Citect Anywhere 安全漏洞
CVE-2017-7972		Schneider Electric PowerSCADA Anywhere和Citect Anywhere 权限许可和访问控制问题漏洞
CVE-2017-7973		Schneider Electric U.motion Builder软件SQL注入漏洞
CVE-2017-9956		Schneider Electric U.motion Builder软件安全漏洞
CVE-2017-9957		Schneider Electric U.motion Builder 安全漏洞
CVE-2017-9958		Schneider Electric U.motion Builder 安全漏洞
CVE-2017-9960		Schneider Electric U.motion Builder 信息泄露漏洞
CVE-2017-9961		Schneider Electric Pro-face GP-Pro EX 安全漏洞
CVE-2017-9962		Schneider Electric ClearSCADA 安全漏洞

IV. Related Vulnerabilities

Same product: U.Motion

Same vendor: Schneider Electric SE

V. Comments for CVE-2017-7974

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-7974

I. Basic Information for CVE-2017-7974

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-7974

III. Intelligence Information for CVE-2017-7974

Same Patch Batch · Schneider Electric SE · 2017-09-25 · 12 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-7974

Leave a comment