A Command Injection vulnerability in Schneider Electric homeLYnk Controller exists in all versions before 1.5.0.