CVE-2018-14812
HIGHFuji Electric Energy Savings Estimator <V.1.0.2.0 - DLL Hijacking
Title source: llmDescription
An uncontrolled search path element (DLL Hijacking) vulnerability has been identified in Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.
References (2)
Core 2
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-18-282-07
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/105543
Scores
CVSS v3
7.8
EPSS
0.0110
EPSS Percentile
61.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-427
Status
published
Products (1)
fujielectric/energy_savings_estimator
1.0.2.0
Published
Oct 24, 2018
Tracked Since
Feb 18, 2026