1 results (0.004 seconds)
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-4770 – Uncontrolled Search Path Element Vulnerability in 4D and 4D Windows Server
https://notcve.org/view.php?id=CVE-2023-4770
30 Nov 2023 — An uncontrolled search path element vulnerability has been found on 4D and 4D server Windows executables applications, affecting version 19 R8 100218. This vulnerability consists in a DLL hijacking by replacing x64 shfolder.dll in the installation path, causing an arbitrary code execution. Se ha encontrado una vulnerabilidad no controlada en un elemento de ruta de búsqueda en aplicaciones ejecutables de Windows de 4D y 4D server, afectando a la versión 19 R8 100218. Esta vulnerabilidad consiste en un secues... • https://www.incibe.es/en/incibe-cert/notices/aviso/uncontrolled-search-path-element-vulnerability-4d-and-4d-windows-server • CWE-427: Uncontrolled Search Path Element •