CVE-2022-44939

Efs Software Easy Chat Server Version 3.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL...

Chat Server 代码问题漏洞

Chat Server is ramank775 individual developer's chat server based on microservices architecture, supports high availability, high throughput, horizontal expansion. A security vulnerability exists in Efs Software Easy Chat Server version 3.1, which originates from a DLL hijacking vulnerability tha...

CVE-2022-40746

IBM i Access Family 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.0 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability. By placing a specially crafted file in a compromised folder, an attacker could exploit this...

LG Smart Share 代码问题漏洞

LG Smart Share is a smart sharing software from the South Korean company Lakin LG. A security vulnerability exists in LG Smart Share that originates from a local elevation of privilege via a DLL hijacking attack during installation...

PT-2022-27505 · Lg · Lg Smartshare

Name of the Vulnerable Software and Affected Versions: LG SmartShare affected versions not specified Description: The issue allows for local privilege escalation through a DLL Hijacking attack when LG SmartShare is installed. Recommendations: At the moment, there is no information about a newer...

Dell GeoDrive 代码问题漏洞

Dell GeoDrive is a free application from Dell Inc. It provides access to Dell EMC ECS and Atmos storage from Microsoft Windows desktops and servers. A DLL hijacking vulnerability exists in Dell GeoDrive versions prior to 2.2.3, which can be exploited by an attacker to execute arbitrary code on a...

Notepad++ 代码问题漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A code issue vulnerability exists in Notepad++ 8.4.1 and earlier versions, which stems from susceptibility to DLL hijacking, and can be exploited to replace a vulnerable dll UxTheme.dll with a dll o...

CVE-2022-38611

Incorrect access control in Watchdog Anti-Virus v1.4.158 allows attackers to perform a DLL hijacking attack and execute arbitrary code via a crafted binary...

PT-2022-25035 · Samsung · Smart Switch Pc

Name of the Vulnerable Software and Affected Versions: Smart Switch PC versions prior to 4.3.22083 3 Description: The issue allows an attacker to execute arbitrary code through a DLL hijacking vulnerability. Recommendations: For versions prior to 4.3.22083 3, update to version 4.3.22083 3 or late...

CVE-2022-36271

Outbyte PC Repair Installation File 1.7.112.7856 is vulnerable to Dll Hijacking. iertutil.dll is missing so an attacker can use a malicious dll with same name and can get admin privileges...

SAMSUNG Mobile devices 代码问题漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices Samsung Update Setup prior to version 2.2.9.50, which stems from a DLL hijacking vulnerability that can...

PT-2022-23644 · Samsung · Samsung Update Setup

Name of the Vulnerable Software and Affected Versions: Samsung Update Setup versions prior to 2.2.9.50 Description: The issue allows attackers to execute arbitrary code through a DLL hijacking vulnerability. Recommendations: For versions prior to 2.2.9.50, update to version 2.2.9.50 or later to...

PT-2022-10717 · Aveva · Aveva Software Platform Common Services (Pcs) Portal

Name of the Vulnerable Software and Affected Versions: AVEVA Software Platform Common Services PCS Portal versions 4.4.6, 4.5.0, 4.5.1, 4.5.2 Description: The issue is related to DLL hijacking through an uncontrolled search path element. This may allow an attacker to control one or more locations...

PT-2022-4816 · Unknown · Ma Smart Installer

Name of the Vulnerable Software and Affected Versions: MA Smart Installer for Windows versions prior to 5.7.7 Description: The issue is related to a DLL hijacking vulnerability, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DL...

Dell EMC PowerStore 代码问题漏洞

Dell EMC PowerStore is a storage device from Dell USA. A security vulnerability exists in Dell EMC PowerStore v3.0.0.0 and earlier versions, which originates from a DLL hijacking vulnerability that can be exploited by an attacker to execute arbitrary code, elevate privileges, and bypass software...

ShowMyPC 代码问题漏洞

ShowMyPC is a remote access solution from ShowMyPC, Inc. A security vulnerability exists in ShowMyPC that stems from the presence of a DLL hijacking vulnerability. If an attacker overwrites the file %temp%ShowMyPC-ShowMyPC3606wodVPN.dll, it will run any malicious code contained in that file. Unle...

CVE-2021-45492

In Sage 300 ERP formerly accpac through 6.8.x, the installer configures the C:\Sage\Sage300\Runtime directory to be the first entry in the system-wide PATH environment variable. However, this directory is writable by unprivileged users because the Sage installer fails to set explicit permissions...

CVE-2022-32223

Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim has the following dependencies on a Windows machine: OpenSSL has been installed and “C:\Program Files\Common Files\SSL\openssl.cnf”...

UBUNTU-CVE-2022-32223

Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim has the following dependencies on a Windows machine: OpenSSL has been installed and “C:\Program Files\Common Files\SSL\openssl.cnf”...

Sneaky New Orbit Malware Backdoors Linux Devices

A sneaky malware for Linux is backdooring devices to steal data and can affect all the processes running on a particular machine, researchers have found. The malware, dubbed Orbit, is unlike other Linux threats in that it steals information from different commands and utilities and then stores th...