CVE-2020-7569 – A CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists in EcoStrux …

Vuln ID: CVE-2020-7569

Published:  2020-11-19  22:15:15Z

Description: A CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists in EcoStruxure Building Operation WebReports V1.9 – V3.1 that could cause an authenticated remote user being able to upload arbitrary files due to incorrect verification of user supplied files and achieve remote code execution.

Source: NVD.NIST.GOV