HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing that could execute arbitrary code.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190612-01-dllhijacking-en | Vendor Advisory |
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190612-01-dllhijacking-en | Vendor Advisory |
Configurations
History
21 Nov 2024, 04:44
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190612-01-dllhijacking-en - Vendor Advisory |
Information
Published : 2019-06-13 16:29
Updated : 2024-11-21 04:44
NVD link : CVE-2019-5245
Mitre link : CVE-2019-5245
CVE.ORG link : CVE-2019-5245
JSON object : View
Products Affected
huawei
- hisuite
CWE
CWE-427
Uncontrolled Search Path Element