PT-2014-8877 · Schneider Electric · Schneider Electric Proclima

Published

2014-12-27

Updated

2015-01-07

CVE-2014-9188

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Schneider Electric ProClima (affected versions not specified)

Description The issue concerns a remote code execution vulnerability in Schneider Electric ProClima. Details about the vulnerability include the potential for remote code execution, but specific technical details such as API endpoints, vulnerable parameters, or function names are not provided.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Command Injection

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-119

Related Identifiers

CVE-2014-9188

ZDI-15-005

Affected Products

Schneider Electric Proclima

PT-2014-8877 · Schneider Electric · Schneider Electric Proclima

CVE-2014-9188

Weakness Enumeration

Related Identifiers

Affected Products

References · 5