1216 matches found
ALPINE-CVE-2022-32223
Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim has the following dependencies on a Windows machine: OpenSSL has been installed and “C:\Program Files\Common Files\SSL\openssl.cnf”...
The vulnerability of the DLL library of the Microprogramming Software for Sensor Panels from AutomationDirect C-More series EA9 HMI allows a hacker to execute arbitrary code during the installation process.
The vulnerability of the DLL library of C-More sensor panel microprogramming systems series EA9 HMI is related to an uncontrolled search path element. Exploiting this vulnerability could allow a attacker to execute arbitrary code during the installation process...
CVE-2022-22045
Windows.Devices.Picker.dll Elevation of Privilege Vulnerability...
CVE-2022-22788
The Zoom Opener installer is downloaded by a user from the Launch meeting page, when attempting to join a meeting without having the Zoom Meeting Client installed. The Zoom Opener installer for Zoom Client for Meetings before version 5.10.3 and Zoom Rooms for Conference Room for Windows before...
CVE-2022-22788
The Zoom Opener installer is downloaded by a user from the Launch meeting page, when attempting to join a meeting without having the Zoom Meeting Client installed. The Zoom Opener installer for Zoom Client for Meetings before version 5.10.3 and Zoom Rooms for Conference Room for Windows before...
CVE-2022-24077
Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection...
CVE-2022-30744
DLL hijacking vulnerability in KiesWrapper in Samsung Kies prior to version 2.6.4.220431 allows attacker to execute arbitrary code...
Samsung Kies 代码问题漏洞
Samsung Kies is an application from the South Korean company Samsung Samsung for data synchronization between devices. The program is mainly used to connect Samsung devices with computers and supports features such as file management and device updates. A DLL hijacking vulnerability exists in...
CVE-2022-32291
In Real Player through 20.1.0.312, attackers can execute arbitrary code by placing a UNC share pathname for a DLL file in a RAM file...
Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
Overview Trend Micro Incorporated has released security updates for Apex One and Apex One as a Service. Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN. Impact Privilege escalation and arbitrary DLL loading due to an incorrect...
Trend Micro Apex One 安全漏洞
Trend Micro Apex One is an endpoint protection software from Trend Micro. A security vulnerability exists in Trend Micro Apex One that originates from a misassigned privilege in the service. A local attacker could exploit the vulnerability by loading a DLL on an affected installation to achieve...
CVE-2022-23050
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
Telecommunication Software SAMwin Contact Center Suite 信任管理问题漏洞
Telecommunication Software SAMwin Contact Center Suite is a highly versatile and flexible contact center software solution from Telecommunication Software. A security vulnerability exists in Telecommunication Software SAMwin Contact Center Suite version 5.1, which stems from a function...
Quick Heal 代码问题漏洞
Quick Heal is an antivirus software from Quick Heal that provides IT security solutions for your PC, Mac, phone, tablet and corporate network. A code issue vulnerability exists in versions prior to Quick Heal Total Security 12.1.1.27, which stems from a lack of privilege control during applicatio...
CVE-2022-29028
A vulnerability has been identified in JT2Go All versions V13.3.0.3, Teamcenter Visualization V13.3 All versions V13.3.0.3, Teamcenter Visualization V14.0 All versions V14.0.0.1. The TiffLoader.dll is vulnerable to infinite loop condition while parsing specially crafted TIFF files. An attacker...
Avast Premium Security 代码问题漏洞
Avast Premium Security is an application from the Czech company Avast. Avast Premium Security suffers from a DLL hijacking vulnerability that originates when the instup.exe and wscproxy.exe processes attempt to load a DLL by failing to specify the absolute path to the DLL. An attacker could use...
The vulnerability of the Git distributed version control system’s uninstaller allows a hacker to increase their privileges.
The vulnerability of the Git distributed version control system’s uninstaller is related to an uncontrolled element in the loading process of DLL libraries. Exploiting this vulnerability can allow attackers to enhance their privileges using specially created malicious files with the extension .dl...
CVE-2022-28714
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions prior to 7.2.1.5, a DLL Hijacking vulnerability exists in...
CVE-2022-29505
Due to build misconfiguration in openssl dependency, LINE for Windows before 7.8 is vulnerable to DLL injection that could lead to privilege escalation...
Lenovo PCManager 代码问题漏洞
Lenovo Lenovo Pcmanager Lenovo Computer Manager is a software from Lenovo, China that allows for comprehensive management of Pc devices. A security vulnerability exists in versions prior to Lenovo Pcmanager 4.0.40.2175, which stems from a DLL search path vulnerability in the application. An...