Lucene search
K

7 matches found

NVD
NVD
added 2022/05/11 3:15 p.m.14 views

CVE-2021-34606

A vulnerability exists in XINJE XD/E Series PLC Program Tool in versions up to v3.5.1 that can allow an authenticated, local attacker to load a malicious DLL. Local access is required to successfully exploit this vulnerability. This means the potential attacker must have access to the system and...

7.3CVSS0.00445EPSS
Exploits1References1
OSV
OSV
added 2022/05/11 3:15 p.m.4 views

CVE-2021-34606

A vulnerability exists in XINJE XD/E Series PLC Program Tool in versions up to v3.5.1 that can allow an authenticated, local attacker to load a malicious DLL. Local access is required to successfully exploit this vulnerability. This means the potential attacker must have access to the system and...

7.3CVSS6AI score0.00445EPSS
Exploits1References1
Prion
Prion
added 2022/05/11 3:15 p.m.23 views

Design/Logic Flaw

A vulnerability exists in XINJE XD/E Series PLC Program Tool in versions up to v3.5.1 that can allow an authenticated, local attacker to load a malicious DLL. Local access is required to successfully exploit this vulnerability. This means the potential attacker must have access to the system and...

6.9CVSS7.3AI score0.00445EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/05/11 2:25 p.m.72 views

CVE-2021-34606

CVE-2021-34606 affects XINJE XD/E Series PLC Program Tool up to version 3.5.1. The issue is due to an Uncontrolled Search Path Element (DLL hijacking) that could allow an authenticated, local attacker with file-write privileges to place a malicious DLL and cause arbitrary code execution with the ...

7.3CVSS7.3AI score0.00445EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/05/11 2:25 p.m.30 views

CVE-2021-34606 XINJE XD/E Series PLC Program Tool DLL Hijacking

A vulnerability exists in XINJE XD/E Series PLC Program Tool in versions up to v3.5.1 that can allow an authenticated, local attacker to load a malicious DLL. Local access is required to successfully exploit this vulnerability. This means the potential attacker must have access to the system and...

7.3CVSS7.5AI score0.00445EPSS
Exploits1References1
CVE
CVE
added 2022/05/11 2:25 p.m.70 views

CVE-2021-34605

CVE-2021-34605 affects XINJE XD/E Series PLC Program Tool up to version 3.5.1. A zip-slip flaw in handling a crafted project file could grant arbitrary file write, potentially enabling remote code execution, information disclosure and DoS on the tool. Affected path includes opening a malicious pr...

7.3CVSS7.6AI score0.02385EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/05/11 12:0 a.m.6 views

XINJE XD/E Series PLC Program Tool 安全漏洞

XINJE XD/E Series PLC Program Tool is a programming software from China XINJE Company. A security vulnerability exists in XINJE XD/E Series PLC Program Tool version 3.5.1 and earlier versions. An attacker can exploit this vulnerability to gain write access to arbitrary files...

7.3CVSS7.5AI score0.02385EPSS
Exploits1References3
Rows per page
Query Builder