Описание
Delta Electronics DIAEnergie (all versions prior to 1.8.02.004) are vulnerable to a DLL hijacking condition. When combined with the Incorrect Default Permissions vulnerability of 4.2.2 above, this makes it possible for an attacker to escalate privileges
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.8.02.004 (исключая)
cpe:2.3:a:deltaww:diaenergie:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
7.8 High
CVSS3
7.8 High
CVSS3
4.4 Medium
CVSS2
Дефекты
CWE-427
CWE-427
Связанные уязвимости
CVSS3: 7.8
github
почти 4 года назад
Delta Electronics DIAEnergie (all versions prior to 1.8.02.004) are vulnerable to a DLL hijacking condition. When combined with the Incorrect Default Permissions vulnerability of 4.2.2 above, this makes it possible for an attacker to escalate privileges
EPSS
Процентиль: 13%
0.00044
Низкий
7.8 High
CVSS3
7.8 High
CVSS3
4.4 Medium
CVSS2
Дефекты
CWE-427
CWE-427