cbcvebase.
CVE-2022-32223
published 2022-07-14

CVE-2022-32223: Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim…

high7.3CVSS 3.1
AVLACLPRLUIRSUCHIHAH
Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim has the following dependencies on a Windows machine:* OpenSSL has been installed and “C:\Program Files\Common Files\SSL\openssl.cnf” exists.Whenever the above conditions are present, `node.exe` will search for `providers.dll` in the current user directory.After that, `node.exe` will try to search for `providers.dll` by the DLL Search Order in Windows.It is possible for an attacker to place the malicious file `providers.dll` under a variety of paths and exploit this vulnerability.

Affected

25 ranges
VendorProductVersion rangeFixed in
debiannodejs
nodejsnode>= 10.0 < 10.*10.*
nodejsnode>= 11.0 < 11.*11.*
nodejsnode>= 12.0 < 12.*12.*
nodejsnode>= 13.0 < 13.*13.*
nodejsnode>= 14.0 < 14.20.014.20.0
nodejsnode>= 15.0 < 15.*15.*
nodejsnode>= 16.0 < 16.20.016.20.0
nodejsnode>= 17.0 < 17.*17.*
nodejsnode>= 18.0 < 18.5.018.5.0
nodejsnode>= 4.0 < 4.*4.*
nodejsnode>= 5.0 < 5.*5.*
nodejsnode>= 6.0 < 6.*6.*
nodejsnode>= 7.0 < 7.*7.*
nodejsnode>= 8.0 < 8.*8.*
nodejsnode>= 9.0 < 9.*9.*
nodejsnode.js14.0.0 – 14.14.0
nodejsnode.js>= 14.14.0 < 14.20.014.20.0
nodejsnode.js16.0.0 – 16.12.0
nodejsnode.js>= 16.13.0 < 16.16.016.16.0
nodejsnode.js>= 18.0.0 < 18.0.518.0.5
nodejsnodejs>= 0 < 00
nodejsnodejs>= 0 < 00
nodejsnodejs>= 0 < 00
nodejsnodejs>= 0 < 00

CVSS provenance

nvdv3.17.3HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
osv7.3HIGH