CVE-2023-5012

MEDIUM

Topaz OFD <2.11.0.201 - Unquoted Search Path

Title source: llm

Description

A vulnerability, which was classified as problematic, was found in Topaz OFD 2.11.0.201. This affects an unknown part of the file C:\Program Files\Topaz OFD\Warsaw\core.exe of the component Protection Module Warsaw. The manipulation leads to unquoted search path. Attacking locally is a requirement. Upgrading to version 2.12.0.259 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-239853 was assigned to this vulnerability.

References (2)

[Third Party Advisory] https://vuldb.com/?id.239853

[Third Party Advisory] https://vuldb.com/?ctiid.239853

Scores

CVSS v3 5.3

EPSS 0.0004

EPSS Percentile 12.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

CWE

CWE-428

Status published

Products (1)

topazevolution/ofd 2.11.0.201

Published Sep 16, 2023

Tracked Since Feb 18, 2026