CVE-2020-10626

Summary

In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software installation to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
n/aFazecast jSerialComm, Version 2.2.2 and priorFazecast jSerialComm, Version 2.2.2 and prioraffected

Weaknesses

  • CWE-427: UNCONTROLLED SEARCH PATH ELEMENT CWE-427

ADP Enrichment

CVE Program Container

Additional References

References