DLL Hijacking Vulnerability in Emerson DeltaV DCS Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5

DLL Hijacking Vulnerability in Emerson DeltaV DCS Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5

CVE-2018-14797 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 allow a specially crafted DLL file to be placed in the search path and loaded as an internal and valid DLL, which may allow arbitrary code execution.

Learn more about our Internal Network Penetration Testing.