Vulnerabilities > CVE-2021-22807 - Out-of-bounds Write vulnerability in Schneider-Electric Guicon 2.0

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
schneider-electric
CWE-787

Summary

A CWE-787: Out-of-bounds Write vulnerability exists that could cause arbitrary code execution when a malicious *.gd1 configuration file is loaded into the GUIcon tool. Affected Product: Eurotherm by Schneider Electric GUIcon Version 2.0 (Build 683.003) and prior

Vulnerable Configurations

Part Description Count
Application
Schneider-Electric
1

Common Weakness Enumeration (CWE)