CVE-2018-14797

Summary

Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 allow a specially crafted DLL file to be placed in the search path and loaded as an internal and valid DLL, which may allow arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
EmersonDeltaV DCSv11.3.1, v12.3.1, v13.3.0, v13.3.1, R5affected

Weaknesses

  • CWE-427: UNCONTROLLED SEARCH PATH ELEMENT CWE-427

ADP Enrichment

CVE Program Container

Additional References

References