CVE-2024-10930
Published: 04 March 2025
Summary
CVE-2024-10930 is a high-severity Uncontrolled Search Path Element (CWE-427) vulnerability in Carrier Block Load. Its CVSS base score is 7.1 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique DLL (T1574.001); ranked in the top 18.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 CM-14 (Signed Components) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2024-10930 is an Uncontrolled Search Path Element vulnerability (CWE-427) that enables DLL hijacking, allowing a malicious actor to execute arbitrary code with escalated privileges. The vulnerability carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) and was published on 2025-03-04. It affects software or components detailed in the referenced advisories from CISA and Carrier.
A local attacker with no required privileges can exploit this vulnerability, though it demands low complexity and user interaction. Successful exploitation grants high-impact access to confidentiality, integrity, and availability through arbitrary code execution under escalated privileges.
CISA ICS Advisory ICSA-25-063-01 and Carrier's product security advisories at the provided references outline mitigation strategies and available patches. Security practitioners should consult these sources for specific remediation steps tailored to affected systems.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-54132
Vulnerability details
An Uncontrolled Search Path Element vulnerability exists which could allow a malicious actor to perform DLL hijacking and execute arbitrary code with escalated privileges.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
CWE-427 uncontrolled search path directly enables DLL search order hijacking (T1038) for arbitrary code execution; local exploitation with no privileges but escalated privileges matches T1068.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly remediates the uncontrolled search path vulnerability by identifying, reporting, and applying patches as outlined in CISA and vendor advisories.
Requires signed components for DLLs, preventing execution of malicious unsigned DLLs placed in uncontrolled search paths.
Verifies integrity of software including DLLs to block loading of tampered or unauthorized code via hijacking.