A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow a malicious DLL file, with the same name of any resident DLLs inside the software installation, to execute arbitrary code in all versions of ProClima prior to version 8.0.0.
References
Link | Resource |
---|---|
https://www.schneider-electric.com/en/download/document/SEVD-2019-162-01/ | Vendor Advisory |
Configurations
Information
Published : 2019-07-15 14:15
Updated : 2022-09-02 20:45
NVD link : CVE-2019-6825
Mitre link : CVE-2019-6825
JSON object : View
CWE
CWE-427
Uncontrolled Search Path Element
Products Affected
schneider-electric
- proclima