The NCCIC has published an advisory on user after free vulnerability in Schneider Electric Zelio Soft 2. Zelio Soft 2 versions 5.2 and prior are affected. Successful exploitation of this vulnerability could allow remote code execution through the opening of a specially crafted project file. Schneider Electric reports that version 5.3 of the affected software mitigates the reported vulnerability. The NCCIC also advises of a series of measures for mitigating this vulnerability. Read the advisory at CISA.
You are here
Related Resources
Dec 10, 2024 in Cybersecurity, in OT-ICS Security, in Security Preparedness
Dec 10, 2024 in Cybersecurity, in OT-ICS Security, in Security Preparedness
Dec 10, 2024 in Cybersecurity, in Security Preparedness