PT-2024-1469 · Aveva · Aveva Edge
Adlab
+1
·
Published
2024-01-31
·
Updated
2024-03-01
·
CVE-2023-6132
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
AVEVA Edge (affected versions not specified)
Description
The issue is related to the loading of unsafe DLL libraries, which could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Untrusted Search Path
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Aveva Edge