The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro Client Library ux32w.dll Versions 1.3.0, 1.3.1, and 1.3.2 enables an attacker to load and execute a malicious file.
References
Link | Resource |
---|---|
https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec131.pdf | Patch Third Party Advisory |
https://supportportal.gemalto.com/csm?id=kb_article_view&sysparm_article=KB0017694 | Release Notes Vendor Advisory |
https://ics-cert.us-cert.gov/advisories/ICSA-19-078-01 | US Government Resource Third Party Advisory |
https://ics-cert.us-cert.gov/advisories/ICSA-19-073-02 | US Government Resource Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-04-11 14:29
Updated : 2023-01-31 13:03
NVD link : CVE-2019-6534
Mitre link : CVE-2019-6534
JSON object : View
CWE
CWE-427
Uncontrolled Search Path Element
Products Affected
gemalto
- sentinel_ultrapro_client_library