Somove

This hub aggregates every CVE we track for Somove, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 5 most recently published vulnerabilities affecting Somove.

• CVE-2025-5296CWE-59: Improper Link Resolution Before File Access ('Link Following') vulnerability exists that could cause arbitrary data to be written to protected locations, potentially leading to escalation ...7.3Aug 18, 2025
• CVE-2020-7527Incorrect Default Permission vulnerability exists in SoMove (V2.8.1) and prior which could cause elevation of privilege and provide full access control to local system users to SoMove component and...7.8Aug 31, 2020
• CVE-2018-7239A DLL hijacking vulnerability exists in Schneider Electric's SoMove Software and associated DTM software components in all versions prior to 2.6.2 which could allow an attacker to execute arbitrary...7.8Mar 9, 2018
• CVE-2014-9200Schneider Electric Device Type Managers (DTMs) Stack-based Buffer Overflow7.5Feb 1, 2015
• CVE-2013-0662Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in ...9.3Mar 28, 2014