CVE-2017-10865
HIGHHIBUN Confidential File Decryption < 10.50.0.5 - Untrusted Search Path
Title source: llmDescription
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863.
References (2)
Core 2
Core References
Issue Tracking, Vendor Advisory x_refsource_confirm
http://www.hitachi-solutions.co.jp/hibun/sp/support/importance/20170929.html
Third Party Advisory, VDB Entry third-party-advisory
x_refsource_jvn
https://jvn.jp/en/jp/JVN55516206/index.html
Scores
CVSS v3
7.8
EPSS
0.0101
EPSS Percentile
58.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-426
Status
published
Products (2)
Hitachi Solutions, Ltd./HIBUN Confidential File Decryption program
prior to 10.50.0.5
hitachi-solutions/confidential_file_decryption
Published
Oct 12, 2017
Tracked Since
Feb 18, 2026