VDB
CVE-2019-6822
CVE-2019-6822
PUBLISHED
CVSS 7.800000190734863 HIGH
A Use After Free: CWE-416 vulnerability exists in Zelio Soft 2, V5.2 and earlier, which could cause remote code execution when opening a specially crafted Zelio Soft 2 project file.
EPSS 0.85% · 75.3th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.85%
75.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| schneider-electric | zelio_soft_2 | 0 |
| Zelio Soft | Zelio Soft 2 V5.2 and prior | * |
Exploit Intelligence
Timeline
- Jul 9, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Dec 31, 2022 EPSS Score
References
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-134-05-Modicon+Controllers-V1.1.pdf&p_Doc_Ref=SEVD-2019-134-05 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-190-01-Zelio-Soft-2.pdf&p_Doc_Ref=SEVD-2019-190-01 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2017-065-01-Modicon-SCADAPack-V2.0.pdf&p_Doc_Ref=SEVD-2017-065-01 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-134-11-Modicon-Controllers-V1.1.pdf&p_Doc_Ref=SEVD-2019-134-11 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-190-02-IGSS.pdf&p_Doc_Ref=SEVD-2019-190-02 advisory
- https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2019-190-03-Modicon-M580-Controller.pdf&p_Doc_Ref=SEVD-2019-190-03 advisory
- 109100 vdb
- https://www.zerodayinitiative.com/advisories/ZDI-19-658/ url
- https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-190-01 url
- https://www.us-cert.gov/ics/advisories/icsa-19-190-03 url
- https://nvd.nist.gov/vuln/detail/CVE-2019-6822 advisory
- https://www.zerodayinitiative.com/advisories/ZDI-19-658 url