CVE-2024-5650

HIGH Year: 2024
CVSS v3 Score
8.5
High
Weakness Type
CWE-284
View all →

Vulnerability Description

DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa Electric Corporation. If an attacker is somehow able to intrude into a computer that installed affected product or access to a shared folder, by replacing the DLL file with a tampered one, it is possible to execute arbitrary programs with the authority of the SYSTEM account. The affected products and versions are as follows: CENTUM CS 3000 R3.08.10 to R3.09.50 CENTUM VP R4.01.00 to R4.03.00, R5.01.00 to R5.04.20, R6.01.00 to R6.11.10.

Related Vulnerabilities

CVE-2024-43479

HIGH
CVSS:8.5(High)

Microsoft Power Automate Desktop Remote Code Execution Vulnerability

CWE-2842024

CVE-2016-0392

HIGH
CVSS:8.4(High)

IBM General Parallel File System (GPFS) in GPFS Storage Server 2.0.0 through 2.0.7 and Elastic Storage Server 2.5.x through 2.5.5, 3.x before 3.5.5, and 4.x before 4.0.3, as distributed in Spectrum Sc...

CWE-2842016

CVE-2016-10124

HIGH
CVSS:8.6(High)

An issue was discovered in Linux Containers (LXC) before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push ch...

CWE-2842016

CVE-2016-4383

HIGH
CVSS:8.4(High)

The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified imag...

CWE-2842016

CVE-2016-5574

HIGH
CVSS:8.6(High)

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.5.1 through 8.5.3 allows remote attackers to affect confidentiality, integrity, and avai...

CWE-2842016

CVE-2016-5577

HIGH
CVSS:8.6(High)

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.5.1 through 8.5.3 allows remote attackers to affect confidentiality, integrity, and avai...

CWE-2842016