CVE 8.5 HIGH

eMPIA Technology｜AVACAST – DLL Hijacking_CVE-2026-7279

April 28, 2026 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

AVACAST developed by eMPIA Technology, has a DLL Hijacking vulnerability, allowing authenticated local attackers to place a malicious DLL in a specific directory, resulting in arbitrary code execution with system privileges when the system loads the DLL.

AI Analysis

DLL Hijacking vulnerability allowing arbitrary code execution with system privileges

Basic Information

ID CVE-2026-7279

Source twcert

Published Apr 28, 2026 at 09:39

Affected Product

Vendor eMPIA Technology

Product AVACAST

Affected Versions eMPIA Technology AVACAST 0

CWE Classification

CWE-427

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor eMPIA Technology

Product AVACAST

References

{
    "lastseen": "",
    "description": "AVACAST developed by eMPIA Technology, has a DLL Hijacking vulnerability, allowing authenticated local attackers to place a malicious DLL in a specific directory, resulting in arbitrary code execution with system privileges when the system loads the DLL.",
    "published": "2026-04-28T09:39:58.300Z",
    "modified": "2026-04-28T09:39:58.300Z",
    "type": "cve",
    "title": "eMPIA Technology\uff5cAVACAST - DLL Hijacking",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10884-f9c21-1.html\nhttps://www.twcert.org.tw/en/cp-139-10885-02d83-2.html",
    "id": "CVE-2026-7279",
    "bulletinFamily": "",
    "cwe": [
        "CWE-427"
    ],
    "cvelist": null,
    "sourceData": "eMPIA Technology AVACAST 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AVACAST",
    "version": "0",
    "vendor": "eMPIA Technology",
    "ai_description": "DLL Hijacking vulnerability allowing arbitrary code execution with system privileges",
    "ai_severity": "High",
    "ai_vendor": "eMPIA Technology",
    "ai_product": "AVACAST",
    "ai_version": "0",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply