A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability exists on EcoStruxure Machine Expert – Basic or SoMachine Basic programming software (versions in security notification). The result of this vulnerability, DLL substitution, could allow the transference of malicious code to the controller.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
schneider-electric ecostruxure machine expert |
||
schneider-electric somachine basic |
||
schneider-electric modicon_m100_firmware |
||
schneider-electric modicon_m200_firmware |
||
schneider-electric modicon_m221_firmware |