CVE-2018-7840

HIGH

VideoXpert OpsCenter <3.1 - Buffer Overflow

Title source: llm

Description

A Uncontrolled Search Path Element (CWE-427) vulnerability exists in VideoXpert OpsCenter versions prior to 3.1 which could allow an attacker to cause the system to call an incorrect DLL.

References (1)

[Third Party Advisory] https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-071-01

Scores

CVSS v3 7.8

EPSS 0.0024

EPSS Percentile 46.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (1)

pelco/videoxpert_opscenter < 3.1

Timeline

Published May 22, 2019

Tracked Since Feb 18, 2026