CVE-2024-28099

2024-04-1510:31:34

jpcert

www.cve.org

vt studio

ver.8.32

dll search path

security issue

arbitrary code

dynamic link libraries

privilege escalation

AI Score

7.3

Confidence

Low

EPSS

Percentile

9.0%

JSON

VT STUDIO Ver.8.32 and earlier contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with the privileges of the running application.

CNA Affected

[
  {
    "vendor": "KEYENCE CORPORATION",
    "product": "VT STUDIO",
    "versions": [
      {
        "version": "Ver.8.32 and earlier",
        "status": "affected"
      }
    ]
  }
]

References

jvn.jp/en/vu/JVNVU92825069/

www.keyence.com/vt_vulnerability240329_en