In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software installation to execute arbitrary code.
7.8CVSS
7.8AI Score
0.002EPSS
CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilegeescalation when logged in as a non-administrative user.
7.8CVSS
6.8AI Score
0.0005EPSS