PT-2020-11218 · Msx · Msx Configurator
Published
2020-01-22
·
Updated
2020-01-24
·
CVE-2019-6858
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MSX Configurator versions prior to V1.0.8.1
Description
A privilege escalation issue exists due to an uncontrolled search path element, which could be exploited by injecting a malicious DLL.
Recommendations
For versions prior to V1.0.8.1, update to version V1.0.8.1 or later to resolve the issue.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Msx Configurator