CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-38410

AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are vulnerable to DLL hijacking through an uncontrolled search path element, which may allow an attacker control to one or more locations in the search path.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.2%

CVSS Severity

CVSS v3 Score 7.3

References

Products affected by CVE-2021-38410

Aveva » Batch Management » Version: 2020

cpe:2.3:a:aveva:batch_management:2020
Aveva » Enterprise Data Management » Version: 2020

cpe:2.3:a:aveva:enterprise_data_management:2020
Aveva » Manufacturing Execution System » Version: 2020

cpe:2.3:a:aveva:manufacturing_execution_system:2020
Aveva » Mobile Operator » Version: 2020

cpe:2.3:a:aveva:mobile_operator:2020
Aveva » Platform Common Services » Version: 4.4.6

cpe:2.3:a:aveva:platform_common_services:4.4.6
Aveva » Platform Common Services » Version: 4.5.0

cpe:2.3:a:aveva:platform_common_services:4.5.0
Aveva » Platform Common Services » Version: 4.5.1

cpe:2.3:a:aveva:platform_common_services:4.5.1
Aveva » Platform Common Services » Version: 4.5.2

cpe:2.3:a:aveva:platform_common_services:4.5.2
Aveva » System Platform » Version: 2020

cpe:2.3:a:aveva:system_platform:2020
Aveva » Work Tasks » Version: 2020

cpe:2.3:a:aveva:work_tasks:2020

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-38410

Products

Pricing

Contact Us