6.8
CVSSv2

CVE-2019-10971

Published: 12/06/2019 Updated: 14/06/2019
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Omron Network Configurator for DeviceNet could allow a local authenticated malicious user to execute arbitrary code on the system, caused by the loading of dynamic-linked libraries in an insecure manner. By placing a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Affected Products

ICS Advisories