Path traversal

2022-07-2721:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.8%

JSON

AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are vulnerable to DLL hijacking through an uncontrolled search path element, which may allow an attacker control to one or more locations in the search path.

CPENameOperatorVersion
batch_managementeq2020
enterprise_data_managementeq2020
manufacturing_execution_systemeq2020
mobile_operatoreq2020
platform_common_serviceseq4.5.2
platform_common_serviceseq4.5.1
platform_common_serviceseq4.5.0
platform_common_serviceseq4.4.6
system_platformeq2020 r2-p1
system_platformeq2020 r2

Name	Operator	Version
batch_management	eq	2020
enterprise_data_management	eq	2020
manufacturing_execution_system	eq	2020
mobile_operator	eq	2020
platform_common_services	eq	4.5.2
platform_common_services	eq	4.5.1
platform_common_services	eq	4.5.0
platform_common_services	eq	4.4.6
system_platform	eq	2020 r2-p1
system_platform	eq	2020 r2