CVE-2017-2208

Name of the Vulnerable Software and Affected Versions Electronic tendering and bid opening system versions prior to June 12, 2017

Description The issue concerns an untrusted search path vulnerability in the Installer of the Electronic tendering and bid opening system. This vulnerability allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory.

Recommendations For versions prior to June 12, 2017, update the system to a version released after June 12, 2017, to resolve the issue. As a temporary workaround, consider restricting access to the Installer to minimize the risk of exploitation.