CVE-2018-0580

🗓️ 14 May 2018 13:00:00Reported by jpcertType

Untrusted search path vulnerability in CELSYS, Inc CLIP STUDIO serie

Reporter	Title	Published	Views	Family All 8
CNVD	CELSYS CLIP STUDIO PAINT, CLIP STUDIO ACTION and CLIP STUDIO MODELER DLL Search Path Vulnerabilities	16 May 201800:00	–	cnvd
Cvelist	CVE-2018-0580	14 May 201813:00	–	cvelist
EUVD	EUVD-2018-1390	7 Oct 202500:30	–	euvd
Japan Vulnerability Notes	JVN#68345747: The installers of multiple CELSYS,Inc. software may insecurely load Dynamic Link Libraries	27 Apr 201800:00	–	jvn
Japan Vulnerability Notes	The installers of multiple CELSYS,Inc. software may insecurely load Dynamic Link Libraries	27 Apr 201806:19	–	jvn
NVD	CVE-2018-0580	14 May 201813:29	–	nvd
OSV	CVE-2018-0580	14 May 201813:29	–	osv
Prion	Design/Logic Flaw	14 May 201813:29	–	prion

NVD

Node

celsys clip_studio_actionRange≤1.5.5windows

celsys clip_studio_modelerRange≤1.6.3windows

celsys clip_studio_paintRange≤1.7.3windows

[
  {
    "product": "CLIP STUDIO series",
    "vendor": "CELSYS, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "(CLIP STUDIO PAINT (for Windows) EX/PRO/DEBUT Ver.1.7.3 and earlier, CLIP STUDIO ACTION (for Windows) Ver.1.5.5 and earlier, with its timestamp prior to April 25, 2018, 12:11:31, and CLIP STUDIO MODELER (for Windows) Ver.1.6.3 and earlier, with its timestamp prior to April 25, 2018, 17:02:49)"
      }
    ]
  }
]

Source	Link
clipstudio	www.clipstudio.net/en/dl
jvn	www.jvn.jp/en/jp/JVN68345747/
clip-studio	www.clip-studio.com/clip_site/download/clipstudioaction/csaupdater/index_win

21 Nov 2024 03:38Current

7.7High risk

Vulners AI Score7.7

CVSS 26.8

CVSS 37.8

EPSS0.0034

CWE-426