Loading a DLL through an Uncontrolled Search Path Element in the Bosch Configuration Manager installer up to and including version 7.21.0078 potentially allows an malicious user to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same directory where the installer is started from.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bosch configuration manager |