Mechrevo Control Console GCUService csCAPI.dll uncontrolled search path

A vulnerability was found in Mechrevo Control Console 1.0.2.70. It has been rated as critical. Affected by this issue is some unknown functionality in the library C:\Program Files\OEM\MECHREVO Control Center\UniwillService\MyControlCenter\csCAPI.dll of the component GCUService. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

对搜索路径元素未加控制

Mechrevo Control Console 代码问题漏洞

Mechrevo Control Console是中国机械革命（Mechrevo）公司的一个计算机控制台软件。 Mechrevo Control Console 1.0.2.70版本存在代码问题漏洞，该漏洞源于库文件csCAPI.dll存在不受控搜索路径漏洞。

N/A

N/A