CVE-2023-28140

EPSS 0.18%
Veröffentlicht 18.04.2023 16:15:09
Zuletzt bearbeitet 21.11.2024 07:54:28
Quelle bugreport@qualys.com
CVE-Watchlists
Login
Unerledigt
Login

An Executable Hijacking condition exists in the
Qualys Cloud Agent for Windows platform in versions before 4.5.3.1. Attackers
may load a malicious copy of a Dependency Link Library (DLL) via a local
attack vector instead of the DLL that the application was expecting, when
processes are running with escalated privileges. This vulnerability
is bounded only to the time of uninstallation and can only be exploited
locally.



At the time of this disclosure, versions before 4.0 are classified as End of
Life.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualys ≫ Cloud Agent SwPlatformwindows Version >= 3.1.3.34 < 4.5.3.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.394

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7	1	5.9	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
bugreport@qualys.com	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE-427 Uncontrolled Search Path Element

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

https://www.qualys.com/security-advisories/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-28140

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-28140

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-28140

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-28140