CVE-2022-27842

CWE-20Improper Input ValidationCWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 81.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Smart Switch PCSamsung Smart Switch PC
Timeline
PublishedApr 11
Latest updateApr 12

Description

DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4 allows attacker to execute abitrary code.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 2.5 | Impact: 3.6

Affected Packages2 packages

NVDsamsung/smart_switch_pc< 4.2.22022_4
CVEListV5samsung_mobile/smart_switch_pc-4.2.22022_4

🔴Vulnerability Details

2
GHSA
GHSA-67p5-hjx4-3v27: DLL hijacking vulnerability in Smart Switch PC prior to version 42022-04-12
CVEList
CVE-2022-27842: DLL hijacking vulnerability in Smart Switch PC prior to version 42022-04-11
CVE-2022-27842 (HIGH CVSS 7.8) | DLL hijacking vulnerability in Smar | cvebase.io