Lucene search

[email protected]CVE-2014-5430

HistoryNov 07, 2014 - 11:55 a.m.

CVE-2014-5430

2014-11-0711:55:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

vulnerability

abb robotstudio

test signal viewer

local users

privileges

dll

cve-2014-5430

nvd

6.7 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

20.3%

JSON

Untrusted search path vulnerability in ABB RobotStudio 5.6x before 5.61.02 and Test Signal Viewer 1.5 allows local users to gain privileges via a Trojan horse DLL that is accessed as a result of incorrect DLL configuration by an optional installation program.

CPENameOperatorVersion
abb:robotstudioabb robotstudioeq5.60
abb:test_signal_viewerabb test signal viewereq1.5
abb:robotstudioabb robotstudioeq5.61
abb:robotstudioabb robotstudioeq5.61.01

CPE	Name	Operator	Version
abb:robotstudio	abb robotstudio	eq	5.60
abb:test_signal_viewer	abb test signal viewer	eq	1.5
abb:robotstudio	abb robotstudio	eq	5.61
abb:robotstudio	abb robotstudio	eq	5.61.01

References

ics-cert.us-cert.gov/advisories/ICSA-14-308-01

6.7 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

20.3%

JSON

Related for CVE-2014-5430

cvelist1 ics1 prion1