Buffer Overflow Vulnerability in Schneider Electric ProClima ActiveX Control
CVE-2014-8513

Currently unrated

Key Information:

Vendor: Schneider Electric
Status: Proclima
Vendor: CVE Published:; 27 December 2014

🔔 Create Schneider Electric Vulnerability Alert

What is CVE-2014-8513?

A buffer overflow vulnerability exists in the ActiveX control (MDraw30.ocx) of Schneider Electric's ProClima application prior to version 6.1.7. This flaw enables attackers to execute arbitrary code on vulnerable systems via unvalidated input, allowing for severe security breaches. Users are encouraged to update to the latest version of ProClima to mitigate this vulnerability and safeguard their systems against potential exploitation.

References

http://download.schneider-electric.com/files?p_Doc_Ref=SE...

x_refsource_CONFIRM

https://ics-cert.us-cert.gov/advisories/ICSA-14-350-01

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 27, 2014
Vulnerability Reserved
Oct 28, 2014