CVE-2022-2313

A DLL hijacking vulnerability in the MA Smart Installer for Windows prior to 5.7.7, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL into the folder from where the Smart installer is being executed.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:agent:*:*:*:*:*:windows:*:*

History

07 Nov 2023, 03:46

Type Values Removed Values Added
References (CONFIRM) https://kcm.trellix.com/corporate/index?page=content&id=SB10385&actp=null&viewlocale=en_US&showDraft=false&platinum_status=false&locale=en_US - Third Party Advisory () https://kcm.trellix.com/corporate/index?page=content&id=SB10385&actp=null&viewlocale=en_US&showDraft=false&platinum_status=false&locale=en_US -

Information

Published : 2022-07-27 10:15

Updated : 2024-02-28 19:29


NVD link : CVE-2022-2313

Mitre link : CVE-2022-2313

CVE.ORG link : CVE-2022-2313


JSON object : View

Products Affected

mcafee

  • agent
CWE
CWE-427

Uncontrolled Search Path Element