CVE-2022-2313

Summary

A DLL hijacking vulnerability in the MA Smart Installer for Windows prior to 5.7.7, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL into the folder from where the Smart installer is being executed.

Affected Software

VendorProductVersion RangeStatus
TrellixTrellix Agent (TA)unspecified < 5.7.7affected

Weaknesses

  • CWE- 427: Uncontrolled Search Path Element

ADP Enrichment

CVE Program Container

Additional References

References