2 matches found
CVE-2017-9961
Schneider Electric Pro-face GP-Pro EX (software) version 4.07.000 is affected by CVE-2017-9961: an Uncontrolled Search Path Element vulnerability (CWE-427) that can force a process to load an arbitrary DLL and execute code in the current process context. Exploitation is local (not remote) and req...
Schneider Electric Pro-face GP-Pro EX
CVSS v3 7.2 ATTENTION: Public exploits are available. Vendor: Schneider Electric Equipment: Pro-face GP-Pro EX Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following versions of Pro-face GP-Pro EX software, an HMI management platform, are affected: GP Pro EX version...