CVE-2017-7966

Summary

A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC v2.1.0 allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability exists due to the improper loading of a DLL.

Affected Software

VendorProductVersion RangeStatus
Schneider Electric SESoMachine HVAC Programming Softwarev2.1.0 for Modicon M171/M172 Controllersaffected

Weaknesses

  • DLL Hijacking

ADP Enrichment

CVE Program Container

Additional References

References