Vulnerabilities > Schneider Electric > Somove > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-31 | CVE-2020-7527 | Incorrect Default Permissions vulnerability in Schneider-Electric Somove 1.7/2.8.1 Incorrect Default Permission vulnerability exists in SoMove (V2.8.1) and prior which could cause elevation of privilege and provide full access control to local system users to SoMove component and services when a SoMove installer script is launched. | 4.6 |
| 2018-03-09 | CVE-2018-7239 | Untrusted Search Path vulnerability in Schneider-Electric products A DLL hijacking vulnerability exists in Schneider Electric's SoMove Software and associated DTM software components in all versions prior to 2.6.2 which could allow an attacker to execute arbitrary code. | 6.8 |