Schneider-Electric: >> Somachine Hvac >> 2.1.0 Security Vulnerabilities
A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier versions, which could cause arbitrary code execution on the system running SoMachine HVAC when a malicious DLL library is loaded by the product.
CVSS Score
7.8
EPSS Score
0.004
Published
2019-09-17
A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric's SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller.
CVSS Score
7.3
EPSS Score
0.001
Published
2017-06-07