7.9 High
AI Score
Confidence
Low
9 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:C/I:P/A:P
0.27 Low
EPSS
Percentile
96.8%
Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8513 and CVE-2014-8514. NOTE: this may be clarified later based on details provided by researchers.
CPE | Name | Operator | Version |
---|---|---|---|
schneider_electric:proclima | schneider electric proclima | le | 6.0.1 |