CVE-2021-22037

CWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 67.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Vmware Installbuilder
Timeline
PublishedOct 29
Latest updateMay 24

Description

Under certain circumstances, when manipulating the Windows registry, InstallBuilder uses the reg.exe system command. The full path to the command is not enforced, which results in a search in the search path until a binary can be identified. This makes the installer/uninstaller vulnerable to Path Interception by Search Order Hijacking, potentially allowing an attacker to plant a malicious reg.exe command so it takes precedence over the system command. The vulnerability only affects Windows insta

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDvmware/installbuilder< 21.6.0
CVEListV5vmware_installbuilderAll InstallBuilder versions prior to version 21.6.0

🔴Vulnerability Details

2
GHSA
GHSA-jv5m-f67h-gh5c: Under certain circumstances, when manipulating the Windows registry, InstallBuilder uses the reg2022-05-24
CVEList
CVE-2021-22037: Under certain circumstances, when manipulating the Windows registry, InstallBuilder uses the reg2021-10-29
CVE-2021-22037 (HIGH CVSS 7.8) | Under certain circumstances | cvebase.io