PT-2026-21496 · Eai Technologies · Eai Technologies Erp

Dong-Jie Chen

·

Publicado

2026-02-23

·

Atualizado

2026-02-28

·

CVE-2026-2998

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions eAI Technologies ERP versions prior to F2
Description The software is susceptible to a DLL hijacking issue. Authenticated local attackers can exploit this by placing a crafted DLL file in the same directory as the program, which allows for arbitrary code execution.
Recommendations Restrict access to the software and monitor for suspicious DLL files.

Correção

Untrusted Search Path

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-426

Identificadores relacionados

CVE-2026-2998

Produtos afetados

Eai Technologies Erp