CVE-2015-7375
InduSoft Web Studio < 7.1.3.6 - Remote Code Execution via Crafted Project File
Title source: llmDescription
Schneider Electric InduSoft Web Studio before 8.0 allows remote attackers to execute arbitrary code or cause a denial of service (unhandled runtime exception and application crash) via a crafted Indusoft Project file.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2015-251-01
Scores
EPSS
0.0222
EPSS Percentile
80.5%
Details
CWE
CWE-20
Status
published
Products (1)
indusoft/web_studio
< 7.1.3.6
Published
Sep 25, 2015
Tracked Since
Feb 18, 2026