CVE-2024-13946

MEDIUM

ASPECT-Enterprise <3.* - Binary Planting

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-13946. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates a binary planting vulnerability in ABB Cylon Aspect Studio 3.08.03. The application attempts to load a missing DLL (CylonLicence.dll), allowing an attacker to place a malicious DLL in the search path to execute arbitrary code.

Description

DLL's are not digitally signed when loaded in ASPECT's configuration toolset exposing the application to binary planting during device commissioning.This issue affects ASPECT-Enterprise: through 3.*; NEXUS Series: through 3.*; MATRIX Series: through 3.*.

Exploits (1)

exploitdb WORKING POC
by LiquidWorm · textlocalmultiple
https://www.exploit-db.com/exploits/52306

This exploit demonstrates a binary planting vulnerability in ABB Cylon Aspect Studio 3.08.03. The application attempts to load a missing DLL (CylonLicence.dll), allowing an attacker to place a malicious DLL in the search path to execute arbitrary code.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: ABB Cylon Aspect Studio <=3.08.03
No auth needed
Prerequisites: Access to the application directory or a directory in the DLL search path · Ability to place a malicious DLL named CylonLicence.dll
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 6.8
EPSS 0.0098
EPSS Percentile 57.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-427
Status published
Products (3)
ABB/ASPECT-Enterprise < 3.*
ABB/MATRIX Series < 3.*
ABB/NEXUS Series < 3.*
Published May 22, 2025
Tracked Since Feb 18, 2026