VYPR

TGML

by Schneider Electric

CVEs (2)

  • CVE-2026-1226HigFeb 11, 2026
    risk 0.46cvss epss 0.00

    CWE‑94: Improper Control of Generation of Code vulnerability exists that could cause execution of untrusted or unintended code within the application when maliciously crafted design content is processed through a TGML graphics file.

  • CVE-2025-6788MedJul 11, 2025
    risk 0.34cvss epss 0.00

    A CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that exposes TGML diagram resources to the wrong control sphere, providing other authenticated users with potentially inappropriate access to TGML diagrams.