exploitDog

CVE-2017-5147

Опубликовано: 09 сент. 2017

Источник: nvd

CVSS3: 5.3

CVSS2: 4.6

EPSS Низкий

Описание

An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path.

Ссылки

http://www.securityfocus.com/bid/100522
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-241-01
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/100522
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-241-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:azeotech:daqfactory:*:*:*:*:*:*:*:*

Версия до 16.3 (включая)

EPSS

Процентиль: 29%

0.00105

Низкий

5.3 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-427

CWE-427

Связанные уязвимости

GHSA-p772-97pf-8hmx

CVSS3: 5.3

github

больше 3 лет назад

An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path.

EPSS

Процентиль: 29%

0.00105

Низкий

5.3 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-427

CWE-427