CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8422

CWE-416: Use After Free vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when application user opens a malicious Zelio Soft 2 project file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-282-06&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-282-06.pdf

Products affected by CVE-2024-8422

Schneider-Electric » Zelio Soft 2 » Version: N/A

cpe:2.3:a:schneider-electric:zelio_soft_2:-
Schneider-Electric » Zelio Soft 2 » Version: 4.6

cpe:2.3:a:schneider-electric:zelio_soft_2:4.6
Schneider-Electric » Zelio Soft 2 » Version: 5.0

cpe:2.3:a:schneider-electric:zelio_soft_2:5.0
Schneider-Electric » Zelio Soft 2 » Version: 5.1

cpe:2.3:a:schneider-electric:zelio_soft_2:5.1
Schneider-Electric » Zelio Soft 2 » Version: 5.2

cpe:2.3:a:schneider-electric:zelio_soft_2:5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8422

Products

Pricing

Contact Us