3 matches found
CVE-2021-38469
Many of the services used by the affected product do not specify full paths for the DLLs they are loading. An attacker can exploit the uncontrolled search path by implanting their own DLL near the affected product’s binaries, thus hijacking the loaded DLL...
CVE-2021-38469 AUVESY Versiondog
Many of the services used by the affected product do not specify full paths for the DLLs they are loading. An attacker can exploit the uncontrolled search path by implanting their own DLL near the affected product’s binaries, thus hijacking the loaded DLL...
CVE-2021-38469
CVE-2021-38469 affects AUVESY Versiondog. Several services do not specify full DLL paths, allowing DLL hijacking via the uncontrolled search path near the product binaries. This can enable loading of attacker-controlled DLLs. CVSS v3/ICS metrics indicate very high impact in context; however, expl...