Known Exploited Vulnerability: CVE-2018-7841

Schneider Electric U.motion Builder SQL Injection Vulnerability

Catalog version: 2026.06.29 Date added: 2022-04-15 Due date: 2022-05-06 CISA catalog

Vendor: Schneider Electric

Product: U.motion Builder

Required action: The impacted product is end-of-life and should be disconnected if still in use.

Known ransomware campaign use: Unknown

Notes: https://nvd.nist.gov/vuln/detail/CVE-2018-7841

CWEs

cvelogic Threat Intelligence