CVE-2024-8299 Information

Description

Uncontrolled Search Path Element vulnerability in ICONICS GENESIS64 all versions Mitsubishi Electric GENESIS64 all versions and Mitsubishi Electric MC Works64 all versions allows a local authenticated attacker to execute a malicious code by storing a specially crafted DLL in a specific folder. This could lead to disclose tamper with destroy or delete information in the affected products or cause a denial of service (DoS) condition on the products.

Reference

https://jvn.jp/vu/JVNVU93891820 https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-010_en.pdf