How severe is CVE-2019-6825?

CVE-2019-6825 has a CVSS v3 score of 7.8 (HIGH).

CVE-2019-6825

Name: proclima
Author: schneider-electric

7.8HIGH

A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow a malicious DLL file, with the same name of any resident DLLs insid

Published: 7/15/2019Updated: 11/21/2024

Description

A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow a malicious DLL file, with the same name of any resident DLLs inside the software installation, to execute arbitrary code in all versions of ProClima prior to version 8.0.0.

AI AnalysisPowered by AI

Affected Products

schneider-electricproclima

References

https://www.schneider-electric.com/en/download/document/SEVD-2019-162-01/
Vendor Advisory
https://www.schneider-electric.com/en/download/document/SEVD-2019-162-01/
Vendor Advisory