Vulnerabilities > CVE-2016-4529 - Unspecified vulnerability in Schneider-Electric Somachine Hvac Firmware 2.0.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 2 | |
OS | 1 |