Primary

Context

Hitachi HVAC Energy Saving Program Insecure DLL Loading Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A vulnerability exists in the Hitachi HVAC Energy Saving Program due to insecure loading of dynamic link libraries. This flaw could enable local attackers to disclose information or execute arbitrary code on affected systems. The vulnerability requires user interaction, such as opening a malicious file.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure or arbitrary code execution on the affected system.

Remediation

The Hitachi HVAC Energy Saving Program has reached End of Life and is no longer supported. Users are advised to retire this product.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

3.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

3.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Hitachi HVAC Energy Saving Program Insecure DLL Loading Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating