An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software for M171/M172 Controllers prior to 2.1.0 allows remote malicious users to execute arbitrary code via unknown vectors, related to the INTERFACESAFE_FOR_UNTRUSTED_CALLER (aka safe for scripting) flag.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
schneider-electric somachine_hvac_firmware |