Primary

Context

Eaton NMC G2 Path Traversal Vulnerability Allowing Unauthorized File Modification

Vulnerability

A path traversal vulnerability has been identified in Eaton's NMC G2, allowing authenticated and privileged users to modify the contents of a non-sensitive file. This issue arises from the limited shell environment of the command-line interface (CLI), where the file path can be manipulated. The vulnerability has been addressed in the latest version of NMC G2, available on the Eaton download center.

Impact

Exploitation of this vulnerability could lead to unauthorized modification of file contents, potentially causing disruption or misuse of the affected system.

Remediation

Users are advised to update to the latest version of NMC G2, available on the Eaton download center.

Added: Sep 5, 2025, 7:17 AM

Updated: Sep 5, 2025, 7:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.8

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.8

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Eaton NMC G2 Path Traversal Vulnerability Allowing Unauthorized File Modification

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating