CVE-2024-1595

Name of the Vulnerable Software and Affected Versions Delta Electronics CNCSoft-B DOPSoft versions prior to 4.0.0.82

Description The issue is related to the insecure loading of libraries, which may allow an attacker to use DLL hijacking and take over the system where the software is installed. This is due to an uncontrolled search path element. Exploitation of the issue may allow an attacker to execute arbitrary code.

Recommendations For versions prior to 4.0.0.82, update to version 4.0.0.82 or later to resolve the issue. As a temporary workaround, consider restricting access to the system where the software is installed to minimize the risk of exploitation. Avoid using the software until the issue is resolved.