CVE-2022-27843

CWE-20Improper Input ValidationCWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 81.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile KiesSamsung Kies
Timeline
PublishedApr 11
Latest updateApr 12

Description

DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute abitrary code.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 2.5 | Impact: 3.6

Affected Packages2 packages

NVDsamsung/kies< 2.6.4.22014_2
CVEListV5samsung_mobile/kies-2.6.4.22014_2

🔴Vulnerability Details

2
GHSA
GHSA-4xxv-x43x-7c6g: DLL hijacking vulnerability in Kies prior to version 22022-04-12
CVEList
CVE-2022-27843: DLL hijacking vulnerability in Kies prior to version 22022-04-11
CVE-2022-27843 (HIGH CVSS 7.8) | DLL hijacking vulnerability in Kies | cvebase.io