3 matches found
CVE-2022-36403
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2022-36403
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2022-36403
The CVE-2022-36403 issue affects Ricoh Device Software Manager installer up to version 2.20.3.0. The root cause is an untrusted search path that may cause insecure loading of DLLs (CWE-427), potentially allowing arbitrary code execution with the installer user’s privileges. Public documents consi...