PT-2026-21496 · Eai Technologies · Eai Technologies Erp
Dong-Jie Chen
·
Published
2026-02-23
·
Updated
2026-02-28
·
CVE-2026-2998
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
eAI Technologies ERP versions prior to F2
Description
The software is susceptible to a DLL hijacking issue. Authenticated local attackers can exploit this by placing a crafted DLL file in the same directory as the program, which allows for arbitrary code execution.
Recommendations
Restrict access to the software and monitor for suspicious DLL files.
Fix
Untrusted Search Path
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Eai Technologies Erp