DLL Hijacking vulnerability has been found in CENTUM CAMS...
High severity
Unreviewed
Published
Jun 17, 2024
to the GitHub Advisory Database
•
Updated Jun 17, 2024
Description
Published by the National Vulnerability Database
Jun 17, 2024
Published to the GitHub Advisory Database
Jun 17, 2024
Last updated
Jun 17, 2024
DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa Electric Corporation. If an attacker is somehow able to intrude into a computer that installed affected product or access to a shared folder, by replacing the DLL file with a tampered one, it is possible to execute arbitrary programs with the authority of the SYSTEM account.
The affected products and versions are as follows:
CENTUM CS 3000 R3.08.10 to R3.09.50
CENTUM VP R4.01.00 to R4.03.00, R5.01.00 to R5.04.20, R6.01.00 to R6.11.10.
References