Lucene search
MitreCVE-2023-25428HistoryMay 12, 2023 - 4:15 p.m.
CVE-2023-25428
2023-05-1216:15:09
CWE-427
mitre
web.nvd.nist.gov
18
cve-2023-25428
dll hijacking
soft-o free password manager
code execution
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.001
Percentile
21.4%
A DLL Hijacking issue discovered in Soft-o Free Password Manager 1.1.20 allows attackers to create arbitrary DLLs leading to code execution.
Affected configurations
Node
soft-ofree_password_managerMatch1.1.20
| Vendor | Product | Version | CPE |
|---|---|---|---|
| soft-o | free_password_manager | 1.1.20 | cpe:2.3:a:soft-o:free_password_manager:1.1.20:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-25428
2023-05-12 00:00:00
nvd
nvd
CVE-2023-25428
2023-05-12 16:15:09
packetstorm
packetstorm
Soft-o Free Password Manager 1.1.20 DLL Hijacking
2023-05-10 00:00:00
prion
prion
Default credentials
2023-05-12 16:15:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.001
Percentile
21.4%
Related for CVE-2023-25428