CVE-2019-5245
First published: Thu Jun 13 2019(Updated: )
HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing that could execute arbitrary code.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Hisuite | <=9.1.0.300 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-5245?
CVE-2019-5245 is a DLL hijacking vulnerability in HiSuite 9.1.0.300 and earlier versions.
What is the severity of CVE-2019-5245?
The severity of CVE-2019-5245 is medium with a CVSS score of 5.3.
How does the DLL hijacking vulnerability in HiSuite work?
The DLL hijacking vulnerability in HiSuite allows an attacker to load a DLL file of their choosing that could execute arbitrary code.
Which versions of HiSuite are affected by CVE-2019-5245?
HiSuite 9.1.0.300 versions and earlier are affected by CVE-2019-5245.
How can I fix the DLL hijacking vulnerability in HiSuite?
To fix the DLL hijacking vulnerability in HiSuite, it is recommended to update to a version higher than 9.1.0.300.
- collector/nvd-index
- agent/weakness
- agent/author
- agent/tags
- agent/event
- agent/type
- agent/severity
- agent/references
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei hisuite
- version/huawei hisuite/9.1.0.300