Lucene search
DellCVE-2022-33921HistoryOct 12, 2022 - 8:15 p.m.
CVE-2022-33921
2022-10-1220:15:10
CWE-427
dell
web.nvd.nist.gov
34
2
cve-2022-33921
dell geodrive
dll hijacking
vulnerability
low privilege
arbitrary code
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.6%
Dell GeoDrive, versions prior to 2.2, contains Multiple DLL Hijacking Vulnerabilities. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context.
Affected configurations
Node
dellgeodriveRange<2.2.3
CNA Affected
[
{
"vendor": "Dell",
"product": "GeoDrive",
"versions": [
{
"version": "unspecified",
"lessThan": "2.2",
"status": "affected",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2022-33921
2022-10-12 20:15:10
cnvd
cnvd
Dell GeoDrive DLL Hijacking Vulnerability
2022-10-14 00:00:00
cvelist
cvelist
CVE-2022-33921
2022-10-12 19:25:45
prion
prion
Code injection
2022-10-12 20:15:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.6%
Related for CVE-2022-33921