Advisories

Some commands used by the ISaGRAF eXchange Layer (IXL) protocol perform various file operations in the file system. Since the parameter pointing to the file name is not checked for reserved characters, it is possible to traverse the ISaGRAF Runtime application’s directory. Scope ⚠ Scope changed: it is possible to break out from the application’s folder and access any files on the filesystem with privilege of IXL service Integrity ⚠ Integrity of the system may be seriously affected: it is possible to modify and upload files on the filesystem Availability ⚠ Availability of the system may be seriously affected: it is possible to remove files on the filesystem