124 matches found
CVE-2017-7965
A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric's SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller...
CVE-2017-7966
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC v2.1.0 allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability exists due to the improper loading of a DLL...
Schneider Electric SoMachine HVAC Stack Buffer Overflow Vulnerability
SoMachine HVAC is PLC programming software. SoMachine HVAC version 2.1.0 suffers from a stack buffer overflow vulnerability that originates from a security flaw in a call to AlTracePrint.exe, which can be exploited by an attacker to cause a buffer overflow...
Schneider Electric SoMachine HVAC Arbitrary Code Execution Vulnerability
SoMachine HVAC is PLC programming software. An arbitrary code execution vulnerability exists in Schneider Electric SoMachine HVAC. The vulnerability stems from a failure to properly load a DLL file and could be exploited by an unauthenticated attacker to execute arbitrary code on the target syste...
Schneider Electric SoMachine Basic and Schneider Electric Modicon TM221CE16R Security Bypass Vulnerability
Schneider Electric SoMachine Basic and Schneider Electric Modicon TM221CE16R are both products of Schneider Electric France. The former is a programming and debugging interface for all components on the control platform; the latter is a programmable controller. A security vulnerability exists in...
Schneider Electric Modicon M221 PLCs and SoMachine Basic
CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit. Public exploits are available. Vendor: Schneider Electric Equipment: Modicon M221 PLCs and SoMachine Basic Vulnerability: Use of Hard-Coded Cryptographic Key, Protection Mechanism Failure AFFECTED PRODUCTS Schneider Electric...
Schneider Electric Modicon M221 PLCs and SoMachine Basic (Update A)
CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit. Public exploits are available. Vendor: Schneider Electric Equipment: Modicon M221 PLCs and SoMachine Basic Vulnerability: Use of Hard-Coded Cryptographic Key, Protection Mechanism Failure UPDATE INFORMATION This updated...
Hardcoded credentials
Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...
CVE-2017-7574
Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...
CVE-2017-7574
Schneider Electric SoMachine Basic 1.4 SP1 and Modicon TM221CE16R 1.3.3.3 contain a hardcoded cryptographic key used to AES-CBC encrypt project files; the fixed key (SoMachineBasicSoMachineBasicSoMa) cannot be changed, allowing decrypted data to reveal the user password and enable opening/modifyi...
CVE-2017-7574
Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...
Schneider Modicon M221CE16R Hard-Coded Vulnerability
The Modicon M221CE16R is an all-in-one programmable controller from Schneider Electric Co. The Schneider Modicon M221CE16R is vulnerable to a hard-coded vulnerability where XML files are AES-CBC encrypted, but the key used for encryption is hard-coded and cannot be changed. After decrypting the X...
Schneider Electric SoMachine HVAC AxEditGrid ActiveX Untrusted Pointer Dereference (CVE-2016-4529)
The vulnerability is due to a dereference of user-supplied SetDataIntf parameter value as a function pointer within the AxEditGrid ActiveX control. A remote, unauthenticated attacker could exploit this vulnerability by enticing a victim user to open a specially crafted web page. Successful...
Schneider Electric SoMachine HVAC AxEditGrid ActiveX Control SetDataIntf Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric SoMachine HVAC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...
Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers Arbitrary Code Execution Vulnerability
Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers is a set of programming software for M171/M172 controllers from Schneider Electric France. A security vulnerability exists in the ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M17...
CVE-2016-4529
An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFEFORUNTRUSTEDCALLER aka safe for scripting flag...
CVE-2016-4529
An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFEFORUNTRUSTEDCALLER aka safe for scripting flag...
Design/Logic Flaw
An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFEFORUNTRUSTEDCALLER aka safe for scripting flag...
CVE-2016-4529
Schneider Electric SoMachine HVAC programming software for M171/M172 Controllers contains an unsafe ActiveX control (AxEditGrid) with a SetDataIntf dereference vulnerability. The flaw allows remote code execution via an attacker-supplied memory address in the untrusted pointer dereference within ...
CVE-2016-4529
An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers before 2.1.0 allows remote attackers to execute arbitrary code via unknown vectors, related to the INTERFACESAFEFORUNTRUSTEDCALLER aka safe for scripting flag...