PT-2018-12745 · Fuji Electric · Fuji Electric Energy Savings Estimator

Karn Ganeshen

Publicado

2018-10-24

Atualizado

2019-10-09

CVE-2018-14812

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior

Description An uncontrolled search path element, also known as DLL Hijacking, issue has been identified. This could allow an attacker to gain access to the system with the same level of privilege as the application using the malicious DLL.

Recommendations For Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior, update to a version that contains a fix for this issue, as using a vulnerable version may pose a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

CVE-2018-14812

Produtos afetados

Fuji Electric Energy Savings Estimator

PT-2018-12745 · Fuji Electric · Fuji Electric Energy Savings Estimator

CVE-2018-14812

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4