### [CVE-2018-10619](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10619)
![](https://img.shields.io/static/v1?label=Product&message=Rockwell%20Automation%20RSLinx%20Classic%20and%20FactoryTalk%20Linx%20Gateway&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=UNQUOTED%20SEARCH%20PATH%20OR%20ELEMENT%20CWE-428&color=brighgreen)

### Description

An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk Linx Gateway Versions 3.90.00 and prior may allow an authorized, but non-privileged local user to execute arbitrary code and allow a threat actor to escalate user privileges on the affected workstation.

### POC

#### Reference
- https://www.exploit-db.com/exploits/44892/
- https://www.exploit-db.com/exploits/44892/

#### Github
No PoCs found on GitHub currently.