Lucene search

MitreCVE-2023-51711

HistoryJan 24, 2024 - 7:15 a.m.

CVE-2023-51711

2024-01-2407:15:47

CWE-427

mitre

web.nvd.nist.gov

cve-2023-51711

regify regipay

windows

dll hijacking

security vulnerability

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

23.1%

JSON

An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking: a user can trigger the execution of arbitrary code every time the product is executed.

Affected configurations

Nvd

Node

regifyregipayMatch4.5.1.0windows

VendorProductVersionCPE
regifyregipay4.5.1.0cpe:2.3:a:regify:regipay:4.5.1.0:*:*:*:*:windows:*:*

Vendor	Product	Version	CPE
regify	regipay	4.5.1.0	cpe:2.3:a:regify:regipay:4.5.1.0:::::windows::

References

excellium-services.com/cert-xlm-advisory/cve-2023-51711/

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

23.1%

JSON

Related for CVE-2023-51711