2 matches found
CVE-2018-13806
CVE-2018-13806 is a DLL hijacking vulnerability in Siemens TD Keypad Designer (all versions). The root cause is an uncontrolled search path element that could allow code execution with the user’s privileges when a TD project is opened. The attacker must have write access to the directory containi...
ICSA-18-254-03 Siemens TD Keypad Designer
1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low skill level to exploit Vendor: Siemens Equipment: TD Keypad Designer Vulnerability: Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a local low-privileged attacker to escalate their...