Severity

Medium

Analysis Summary

A use after free vulnerability has been identified, which could cause remote code execution when opening a specially crafted Zelio Soft 2 project file.

Impact

Remote code execution

Affected Vendors

Schneider Electric

Affected Products

Zelio Soft 2

Remediation

Update to a new version

https://www.schneider-electric.com/en/download/document/ZelioSoft2_V5_3/