Количество 2
Количество 2
CVE-2022-31467
A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature of the DLLs it tries to load.
GHSA-jhv9-9wc2-f5gg
Quick Heal Total Security before 12.1.1.27 allows DLL hijacking during installation.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-31467 A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature of the DLLs it tries to load. | CVSS3: 7.9 | 0% Низкий | больше 3 лет назад |
| GHSA-jhv9-9wc2-f5gg Quick Heal Total Security before 12.1.1.27 allows DLL hijacking during installation. | CVSS3: 7.3 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу