CVE-2019-6823: Code Injection
First published: Mon Jul 15 2019(Updated: )
A CWE-94: Code Injection vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0.
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Proclima | <8.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for the Code Injection vulnerability in ProClima?
The vulnerability ID for the Code Injection vulnerability in ProClima is CVE-2019-6823.
What is the severity of CVE-2019-6823?
CVE-2019-6823 has a severity rating of critical (9.8).
Which versions of ProClima are affected by vulnerability CVE-2019-6823?
All versions of ProClima prior to version 8.0.0 are affected by vulnerability CVE-2019-6823.
How can an attacker exploit the Code Injection vulnerability in ProClima?
An unauthenticated, remote attacker can exploit the Code Injection vulnerability in ProClima to execute arbitrary code on the targeted system.
Is there a fix available for vulnerability CVE-2019-6823 in ProClima?
Yes, the fix for vulnerability CVE-2019-6823 in ProClima is to upgrade to version 8.0.0 or later.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- vendor/schneider-electric
- canonical/schneider-electric proclima