CVE-2022-22996
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
The G-RAID 4/8 Software Utility setups for Windows were affected by a DLL hijacking vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the system user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SanDisk Professional | G-RAID 4/8 Software Utility | G-RAID 4/8 Software Utility < 300520006-2 | affected |
| SanDisk Professional | G-RAID 4/8 Software Utility | G-RAID Windows Driver < V6.2.0,16-2 | affected |
Weaknesses
- CWE-427: CWE-427 Uncontrolled Search Path Element
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.