Main Vulnerability Database Exploits ID:8534 - Exploit for Insecure DLL loading in Node.js - CVE-2022-32223

ID:8534 - Exploit for Insecure DLL loading in Node.js - CVE-2022-32223

Published: October 25, 2022

Vulnerability identifier: #VU65276

Vulnerability risk: Low

CVE-ID: CVE-2022-32223

CWE-ID: CWE-427

Exploitation vector: Local access

Vulnerable software:
Node.js

Link to public exploit:

https://github.com/ianyong/cve-2022-32223

Vulnerability description

The vulnerability allows a local attacker to elevate privileges on the system

The vulnerability exists due to DLL search order hijacking of providers.dll. A local attacker can place a specially crafted .dll file and elevate privileges on the system

Remediation

Install updates from vendor's website.

ID:8534 - Exploit for Insecure DLL loading in Node.js - CVE-2022-32223

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human