Podatność CVE-2023-6132
Publikacja: 2024-02-29

Opis:

The vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL.

Typ:

CWE-427

 (Uncontrolled Search Path Element)

 Referencje:
https://www.cisa.gov/news-events/ics-advisories/icsa-24-032-03
https://www.aveva.com/en/support-and-success/cyber-security-updates/
Copyright 2024, cxsecurity.com

 

Back to Top