Buffer Overflow Vulnerability in Schneider Electric's SoMachine HVAC Software
CVE-2017-7965
7.3HIGH
Key Information:
- Vendor
Schneider Electric
- Vendor
- CVE Published:
- 7 June 2017
What is CVE-2017-7965?
A buffer overflow vulnerability exists in the AlTracePrint.exe executable associated with Schneider Electric's SoMachine HVAC software version 2.1.0. This flaw can potentially allow an attacker to exploit the software, compromising its integrity and potentially leading to unauthorized access or control over the Modicon M171/M172 Controllers. Users of this software should be vigilant and consider applying security measures as outlined in risk management documentation.
Affected Version(s)
SoMachine HVAC Programming Software v2.1.0 for Modicon M171/M172 Controllers