Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Uncontrolled Search Path Element Vulnerability in 4D and 4D Windows Server
Vulnerability Description
An uncontrolled search path element vulnerability has been found on 4D and 4D server Windows executables applications, affecting version 19 R8 100218. This vulnerability consists in a DLL hijacking by replacing x64 shfolder.dll in the installation path, causing an arbitrary code execution.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
4D Windows Server 代码问题漏洞
Vulnerability Description
4D Windows Server是美国4D公司的一系列应用程序。 4D Windows Server 存在代码问题漏洞,该漏洞源于通过替换安装路径中的 shfolder.dll 可以进行 DLL 劫持,从而导致任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A