Unrated severityNVD Advisory· Published Dec 15, 2015· Updated May 6, 2026

CVE-2015-7918

Description

Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allow remote attackers to execute arbitrary code via the (1) Attach, (2) DefinedName, (3) DefinedNameLocal, (4) ODBCPrepareEx, (5) ObjCreatePolygon, (6) SetTabbedTextEx, or (7) SetValidationRule method, a different vulnerability than CVE-2015-8561.

Affected products

Schneider Electric/Proclima
cpe:2.3:a:schneider-electric:proclima:*:*:*:*:*:*:*:*
Range: <=6.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

download.schneider-electric.com/filesnvdVendor Advisory
ics-cert.us-cert.gov/advisories/ICSA-15-335-02nvdThird Party AdvisoryUS Government Resource
www.zerodayinitiative.com/advisories/ZDI-15-625nvd
www.zerodayinitiative.com/advisories/ZDI-15-630nvd
www.zerodayinitiative.com/advisories/ZDI-15-631nvd
www.zerodayinitiative.com/advisories/ZDI-15-632nvd
www.zerodayinitiative.com/advisories/ZDI-15-633nvd
www.zerodayinitiative.com/advisories/ZDI-15-634nvd
www.zerodayinitiative.com/advisories/ZDI-15-635nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.011
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000