CVE-2022-28792

Summary

DLL hijacking vulnerability in Gear IconX PC Manager prior to version 2.1.220405.51 allows attacker to execute arbitrary code. The patch adds proper absolute path to prevent dll hijacking.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileGear IconX PC Manager- < 2.1.220405.51affected

Weaknesses

  • CWE-427: CWE-427 Uncontrolled Search Path Element

ADP Enrichment

CVE Program Container

Additional References

References