Uncontrolled Search Path Element Vulnerability in SIMPlight SCADA Software 4.3.0.27 and Prior

Uncontrolled Search Path Element Vulnerability in SIMPlight SCADA Software 4.3.0.27 and Prior

CVE-2017-9661 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

An Uncontrolled Search Path Element issue was discovered in SIMPlight SCADA Software version 4.3.0.27 and prior. The uncontrolled search path element vulnerability has been identified, which may allow an attacker to place a malicious DLL file within the search path resulting in execution of arbitrary code.

Learn more about our Web Application Penetration Testing UK.