PT-2025-47421 · Aes+1 · Aes+1
Published
2025-11-19
·
Updated
2025-12-27
·
CVE-2025-13051
CVSS v4.0
9.3
Critical
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
Name of the Vulnerable Software and Affected Versions
ABP versions 2.0 through 2.0.7.9050
AES versions 1.0 through 1.0.6.8290
Description
The services of ABP and AES, when installed in a directory accessible for writing by non-administrative users, are susceptible to DLL hijacking. An attacker can replace or introduce a malicious DLL with the same name as one loaded by the service. Restarting the service then leads to the execution of the malicious DLL under the LocalSystem account, enabling unauthorized code execution with elevated privileges.
Recommendations
For ABP versions 2.0 through 2.0.7.9050, ensure the installation directory is not writable by non-administrative users.
For AES versions 1.0 through 1.0.6.8290, ensure the installation directory is not writable by non-administrative users.
Fix
LPE
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Abp
Aes