High severity7.0NVD Advisory· Published Feb 13, 2017· Updated Jun 17, 2026
CVE-2016-8354
CVE-2016-8354
Description
An issue was discovered in Schneider Electric Unity PRO prior to V11.1. Unity projects can be compiled as x86 instructions and loaded onto the PLC Simulator delivered with Unity PRO. These x86 instructions are subsequently executed directly by the simulator. A specially crafted patched Unity project file can make the simulator execute malicious code by redirecting the control flow of these instructions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*range: <=11.0
- (no CPE)range: <V11.1
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/93830nvdThird Party AdvisoryVDB Entry
- ics-cert.us-cert.gov/advisories/ICSA-16-306-03nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.