Advisory ID: BT24-04
CVSSv3 Score: 8.8 AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Severity: High
Issue Date: 2024-04-23
Updated On: 2024-04-23
CVE(s): CVE-2024-4017
Synopsis:
U-Series Appliance - DLL Hijacking
Impacted Product:
U-Series Appliance
Summary:
Prior to 4.0.3, a DLL hijacking vulnerability exists in the U-Series appliance. This can be exploited due to permissive file permissions on C:\Appliance
Affected Versions
Product | Version |
|---|---|
U-Series Appliance | Prior to 4.0.3 |
Fixed Versions
Product | Version |
|---|---|
U-Series Appliance | 4.0.3 |