Vulnerabilities > Schneider Electric > Proclima > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-15 | CVE-2019-6823 | Code Injection vulnerability in Schneider-Electric Proclima 6.0.1/6.1 A CWE-94: Code Injection vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0. | 9.8 |
| 2019-07-15 | CVE-2019-6824 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Schneider-Electric Proclima 6.0.1/6.1 A CWE-119: Buffer Errors vulnerability exists in ProClima (all versions prior to version 8.0.0) which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0. | 9.8 |
| 2014-12-27 | CVE-2014-8511 | Buffer Errors vulnerability in Schneider-Electric Proclima 6.0.1 Buffer overflow in an ActiveX control in Atx45.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8512. | 10.0 |
| 2014-12-27 | CVE-2014-9188 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Schneider Electric Proclima Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8513 and CVE-2014-8514. | 9.0 |