Vulnerabilities > Schneider Electric > Somachine Hvac
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-30 | CVE-2022-2988 | Out-of-bounds Write vulnerability in Schneider-Electric Ecostruxure Machine Expert - Hvac and Somachine Hvac A CWE-787: Out-of-bounds Write vulnerability exists that could cause sensitive information leakage when accessing a malicious web page from the commissioning software. | 7.5 |
| 2019-09-17 | CVE-2019-6826 | Untrusted Search Path vulnerability in Schneider-Electric Somachine Hvac 2.1.0/2.4.1 A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier versions, which could cause arbitrary code execution on the system running SoMachine HVAC when a malicious DLL library is loaded by the product. | 6.8 |
| 2017-06-07 | CVE-2017-7965 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Schneider-Electric Somachine Hvac 2.1.0 A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric's SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller. | 4.6 |