CVE-2022-22996

Summary

The G-RAID 4/8 Software Utility setups for Windows were affected by a DLL hijacking vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the system user.

Affected Software

VendorProductVersion RangeStatus
SanDisk ProfessionalG-RAID 4/8 Software UtilityG-RAID 4/8 Software Utility < 300520006-2affected
SanDisk ProfessionalG-RAID 4/8 Software UtilityG-RAID Windows Driver < V6.2.0,16-2affected

Weaknesses

  • CWE-427: CWE-427 Uncontrolled Search Path Element

ADP Enrichment

CVE Program Container

Additional References

References