The NCCIC has published an advisory on user after free vulnerability in Schneider Electric Zelio Soft 2. Zelio Soft 2 versions 5.2 and prior are affected. Successful exploitation of this vulnerability could allow remote code execution through the opening of a specially crafted project file. Schneider Electric reports that version 5.3 of the affected software mitigates the reported vulnerability. The NCCIC also advises of a series of measures for mitigating this vulnerability. Read the advisory at CISA.
You are here
Related Resources
May 22, 2025 in Cybersecurity, in Security Preparedness
May 22, 2025 in Cybersecurity, in Federal & State Resources, in Security Preparedness
May 22, 2025 in Cybersecurity, in Federal & State Resources, in Security Preparedness