EUVD-2018-19511

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

DLL hijacking vulnerability in Schneider Electric Software Update prior to V2.2.0 allows code execution

Reporter	Title	Published	Views	Family All 7
CNVD	Schneider Electric Software Update DLL Hijacking Vulnerability	6 Nov 201800:00	–	cnvd
CVE	CVE-2018-7799	2 Nov 201817:00	–	cve
Cvelist	CVE-2018-7799	2 Nov 201817:00	–	cvelist
ICS	Schneider Electric Software Update (SESU) (Update A)	1 Nov 201800:00	–	ics
ICS	AVEVA Vijeo Citect and Citect SCADA	27 Nov 201800:00	–	ics
NVD	CVE-2018-7799	2 Nov 201817:29	–	nvd
Prion	Spoofing	2 Nov 201817:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "eaf6fdd5-a41f-3b40-8fad-c6671450f1ff",
        "vendor": {
          "name": "Schneider Electric SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6410b9c1-55cb-36e9-a8a0-f8cc53a7eece",
        "product": {
          "name": "Schneider Electric Software Update (SESU), all versions prior to V2.2.0"
        },
        "product_version": "Schneider Electric Software Update (SESU), all versions prior to V2.2.0"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/105951
schneider-electric	www.schneider-electric.com/en/download/document/SEVD-2018-298-01/
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-305-02
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.7High risk

Vulners AI Score7.7

CVSS 37.8

CVSS 29.3

EPSS0.00347