You are here

Schneider Electric Zelio Soft 2 (ICSA-19-190-03)

Schneider Electric Zelio Soft 2 (ICSA-19-190-03)

Created: Wednesday, July 10, 2019 - 16:14
Categories:
Cyber Security

The NCCIC has published an advisory on user after free vulnerability in Schneider Electric Zelio Soft 2. Zelio Soft 2 versions 5.2 and prior are affected. Successful exploitation of this vulnerability could allow remote code execution through the opening of a specially crafted project file. Schneider Electric reports that version 5.3 of the affected software mitigates the reported vulnerability. The NCCIC also advises of a series of measures for mitigating this vulnerability. Read the advisory at CISA.