Buffer Overflow Vulnerabilities in Schneider Electric ProClima ActiveX Control
CVE-2015-7918

Currently unrated

Key Information:

Status
Vendor
CVE Published:
15 December 2015

What is CVE-2015-7918?

Multiple buffer overflow vulnerabilities exist in the F1BookView ActiveX control within Schneider Electric's ProClima before version 6.2. These vulnerabilities can be exploited by remote attackers using various methods such as Attach, DefinedName, and SetValidationRule, allowing them to execute arbitrary code on the affected systems.

References

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.