Security Advisory

CVE-2023-4770

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-30 13:32:43

Last updated 2024-08-02 07:37:59

Assigner INCIBE

State PUBLISHED

Description

An uncontrolled search path element vulnerability has been found on 4D and 4D server Windows executables applications, affecting version 19 R8 100218. This vulnerability consists in a DLL hijacking by replacing x64 shfolder.dll in the installation path, causing an arbitrary code execution.

← Browse all CVEs View on cve.org ↗