CVE List

CVE-2019-6825

Critical 7.8

A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow a malicious DLL file, with the same name of any resident DLLs inside the software installation, to execute arbitrary code in all versions of ProClima prior to version 8.0.0.

Published July 16, 2019.

Affected software

Schneider-electric Proclima

Reference links

Sign Up for Alerts