CVE-2018-14812

HIGH

Fuji Electric Energy Savings Estimator <V.1.0.2.0 - DLL Hijacking

Title source: llm

Description

An uncontrolled search path element (DLL Hijacking) vulnerability has been identified in Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.

References (2)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/105543

[Third Party Advisory, US Government Resource] https://ics-cert.us-cert.gov/advisories/ICSA-18-282-07

Scores

CVSS v3 7.8

EPSS 0.0018

EPSS Percentile 38.9%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (1)

fujielectric/energy_savings_estimator

Timeline

Published Oct 24, 2018

Tracked Since Feb 18, 2026