Vulnerability Description
Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may allow an attacker to use DLL hijacking and take over the system where the software is installed.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Deltaww | Cncsoft-B | <= 1.0.0.4 |
| Deltaww | Dopsoft | < 4.0.0.94 |
Related Weaknesses (CWE)
References
- https://www.cisa.gov/news-events/ics-advisories/icsa-24-053-01US Government Resource
- https://www.cisa.gov/news-events/ics-advisories/icsa-24-053-01US Government Resource
FAQ
What is CVE-2024-1595?
CVE-2024-1595 is a vulnerability with a CVSS score of 7.8 (HIGH). Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82 insecurely loads libraries, which may allow an attacker to use DLL hijacking and take over the system where the software is installed.
How severe is CVE-2024-1595?
CVE-2024-1595 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-1595?
Check the references section above for vendor advisories and patch information. Affected products include: Deltaww Cncsoft-B, Deltaww Dopsoft.