Описание
A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLLs when the software try to load vci11un6.DLL and cinpl.DLL.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.38 (включая)
cpe:2.3:a:eaton:9000x_programming_and_configuration_software:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
4.4 Medium
CVSS2
Дефекты
CWE-426
CWE-426
Связанные уязвимости
github
больше 3 лет назад
A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLLs when the software try to load vci11un6.DLL and cinpl.DLL.
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
4.4 Medium
CVSS2
Дефекты
CWE-426
CWE-426