[SECURITY] Fedora 38 Update: libkrun-1.5.0-7.fc38

Dynamic library providing Virtualization-based process isolation capabilities...

Huddly Camera Service Security Vulnerability

Huddly Camera Service is a connected camera technology from Huddly, Inc. in the United States. A security vulnerability exists in Huddly Camera Service versions prior to 8.0.7 excluding version 7.99, which stems from a DLL hijacking vulnerability due to HuddlyCameraService being installed in a...

CVE-2023-4770

An uncontrolled search path element vulnerability has been found on 4D and 4D server Windows executables applications, affecting version 19 R8 100218. This vulnerability consists in a DLL hijacking by replacing x64 shfolder.dll in the installation path, causing an arbitrary code execution...

PT-2023-30456 · Microsoft +1 · Urlmon.Dll +1

Name of the Vulnerable Software and Affected Versions: NetEase CloudMusic version 2.10.4 Description: An Untrusted search path issue allows local users to gain escalated privileges through the urlmon.dll file in the current working directory. Recommendations: For NetEase CloudMusic version 2.10.4...

PT-2023-31163 · Unknown · Xmachoviewer

Name of the Vulnerable Software and Affected Versions: XMachOViewer version 0.04 Description: A dylib injection issue allows attackers to compromise integrity by injecting unauthorized code into the product's processes. This could potentially lead to remote control and unauthorized access to...

Exploit for Code Injection in Horsicq Xmachoviewer

CVE-2023-49313 A dylib injection vulnerability in XMachOViewer...

Plesk Installer Code Issue Vulnerability

Plesk Installer is an installer program from the Swiss company Plesk. A code issue vulnerability exists in Plesk Installer version 3.27.0.0, which originates from a code issue that allows a local attacker to execute arbitrary code by injecting a DLL file into the same folder where the application...

SanDisk Security Installer Security Vulnerability

Western Digital SanDisk Security Installer is a security installer from Western Digital. A security vulnerability exists in SanDisk Security Installer that stems from the presence of multiple DLL search order hijacking vulnerabilities that could allow an attacker with local access rights to execu...

CVE-2023-4936 Synaptics-DisplayLink-privilege escalation vulnerability via a dynamic library sideloading

It is possible to sideload a compromised DLL during the installation at elevated privilege...

PT-2023-31182

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned. Description The issue allows for the sideloading of a compromised DLL during installation at elevated privilege. Recommendations At the moment, there is no information about a newer version that...

CVE-2023-43625

A vulnerability has been identified in Simcenter Amesim All versions V2021.1. The affected application contains a SOAP endpoint that could allow an unauthenticated remote attacker to perform DLL injection and execute arbitrary code in the context of the affected application process...

PT-2023-6048 · Siemens · Simcenter Amesim

Name of the Vulnerable Software and Affected Versions: Simcenter Amesim versions prior to V2021.1 Description: The issue is related to incorrect code generation management in the Simcenter Amesim platform, which can be exploited by a remote attacker to execute arbitrary code. The affected...

CVE-2023-2809

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL command...

[SECURITY] Fedora 38 Update: libkrun-1.5.0-6.fc38

Dynamic library providing Virtualization-based process isolation capabilities...

SAMSUNG Memory Card & UFD Authentication Utility PC Software Code Issue Vulnerability

SAMSUNG Memory Card & UFD Authentication Utility PC Software is a memory card and UFD authentication utility program from SAMSUNG Korea. A security vulnerability exists in SAMSUNG Memory Card & UFD Authentication Utility PC Software prior to version 1.0.1, which stems from a DLL hijacking...

CVE-2021-41544

A vulnerability has been identified in Siemens Software Center All versions V3.0. A DLL Hijacking vulnerability could allow a local attacker to execute code with elevated privileges by placing a malicious DLL in one of the directories on the DLL search path...

PT-2023-25620 · Pestudio · Pestudio

Name of the Vulnerable Software and Affected Versions: PEStudio version 9.52 Description: An issue in PEStudio allows a remote attacker to execute arbitrary code via a crafted DLL file to the PEStudio executable. Recommendations: For PEStudio version 9.52, consider disabling the execution of...

Winitor PEStudio Code Issue Vulnerability

Winitor PEStudio is an application from Winitor Inc. for discovering executables to simplify and speed up initial malware evaluation. A code issue vulnerability exists in Winitor PEStudio version v.9.52, which stems from the presence of a DLL hijacking vulnerability that can be exploited by an...

Diebold Nixdorf Vynamic View Console Code Issue Vulnerability

The Diebold Nixdorf Vynamic View Console is a system from Diebold Nixdorf that allows remote changes to all PC-based devices via Intel Active Management Technology AMT BIOS management. A security vulnerability exists in Diebold Nixdorf Vynamic View Console v.5.3.1 and prior versions, which...

Exploit for CVE-2023-38820

DLL-Planting-Slack-4.33.73-CVE-2023-38820 DLL Planting in the...