Description

ERP developed by eAI Technologies has a DLL Hijacking vulnerability, allowing authenticated local attackers to place a crafted DLL file in the same directory as the program, thereby executing arbitrary code.

INFO

Published Date :

2026-02-23T02:42:30.294Z

Last Modified :

2026-02-23T13:31:55.139Z

Source :

twcert
AFFECTED PRODUCTS

The following products are affected by CVE-2026-2998 vulnerability.

Vendors Products
Eai Technologies
  • Erp F2
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-2998.

URL Resource
https://www.twcert.org.tw/en/cp-139-10723-14549-2.html cve-icon cve-icon
https://www.twcert.org.tw/tw/cp-132-10722-db7cb-1.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact