Lucene search
IcscertCVELIST:CVE-2018-5457HistoryFeb 06, 2018 - 8:00 p.m.
CVE-2018-5457
2018-02-0620:00:00
CWE-427
icscert
www.cve.org
0.0004 Low
EPSS
Percentile
0.4%
A uncontrolled search path element issue was discovered in Vyaire Medical CareFusion Upgrade Utility used with Windows XP systems, Versions 2.0.2.2 and prior versions. A successful exploit of this vulnerability requires the local user to install a crafted DLL on the target machine. The application loads the DLL and gives the attacker access at the same privilege level as the application.
CNA Affected
[
{
"product": "Vyaire Medical CareFusion Upgrade Utility Vulnerability",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Vyaire Medical CareFusion Upgrade Utility Vulnerability"
}
]
}
]Related
cve
cve
CVE-2018-5457
2018-02-06 21:29:00
prion
prion
Design/Logic Flaw
2018-02-06 21:29:00
nvd
nvd
CVE-2018-5457
2018-02-06 21:29:00
ics
ics
Vyaire Medical CareFusion Upgrade Utility Vulnerability
2020-01-10 12:00:00