CVE-2022-23748

Summary

mDNSResponder.exe is vulnerable to DLL Sideloading attack. Executable improperly specifies how to load the DLL, from which folder and under what conditions. In these scenarios, a malicious attacker could be using the valid and legitimate executable to load malicious files.

Affected Software

VendorProductVersion RangeStatus
n/aAudinate Dante Application Library for WindowsAll versions prior to and including 1.2.0affected

Weaknesses

  • CWE-114: CWE-114: Process Control

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References