Vulnerability Details CVE-2019-6008
An unquoted search path vulnerability in Multiple Yokogawa products for Windows (Exaopc (R1.01.00 ? R3.77.00), Exaplog (R1.10.00 ? R3.40.00), Exaquantum (R1.10.00 ? R3.02.00 and R3.15.00), Exaquantum/Batch (R1.01.00 ? R2.50.40), Exasmoc (all revisions), Exarqe (all revisions), GA10 (R1.01.01 ? R3.05.01), and InsightSuiteAE (R1.01.00 ? R1.06.00)) allow local users to gain privileges via a Trojan horse executable file and execute arbitrary code with eleveted privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.9%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2019-6008
-
cpe:2.3:a:yokogawa:exaopc:r1.01.00
-
cpe:2.3:a:yokogawa:exaopc:r3.77.00
-
cpe:2.3:a:yokogawa:exaplog:r1.10.00
-
cpe:2.3:a:yokogawa:exaplog:r3.30.00
-
cpe:2.3:a:yokogawa:exaquantum/batch:r1.01.00
-
cpe:2.3:a:yokogawa:exaquantum/batch:r2.50.40
-
cpe:2.3:a:yokogawa:exaquantum:r1.10.00
-
cpe:2.3:a:yokogawa:exaquantum:r3.02.00
-
cpe:2.3:a:yokogawa:exarqe:-
-
cpe:2.3:a:yokogawa:exasmoc:-
-
cpe:2.3:a:yokogawa:ga10:r1.01.01
-
cpe:2.3:a:yokogawa:ga10:r3.05.01
-
cpe:2.3:a:yokogawa:insightsuiteae:r1.01.00
-
cpe:2.3:a:yokogawa:insightsuiteae:r1.06.00