← Retour aux CVEs
CVE-2021-42923
HIGH7.3
Description
ShowMyPC 3606 on Windows suffers from a DLL hijack vulnerability. If an attacker overwrites the file %temp%\ShowMyPC\-ShowMyPC3606\wodVPN.dll, it will run any malicious code contained in that file. The code will run with normal user privileges unless the user specifically runs ShowMyPC as administrator.
Details CVE
Score CVSS v3.17.3
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurREQUIRED
Publie7/18/2022
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
microsoft:windowsshowmypc:showmypc
Faiblesses (CWE)
CWE-427
References
http://showmypc.com(cve@mitre.org)
https://f20.be/cves/showmypc-cve-2021-42923(cve@mitre.org)
http://showmypc.com(af854a3a-2127-422b-91ae-364da2661108)
https://f20.be/cves/showmypc-cve-2021-42923(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.