What the vulnerability does

01Description

Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 allow a specially crafted DLL file to be placed in the search path and loaded as an internal and valid DLL, which may allow arbitrary code execution.

Key dates

02Disclosure timeline

August 23, 2018 CVE published
September 17, 2024 Record updated