- Description
- A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met.
- Source
- 551230f0-3615-47bd-b7cc-93e92e730bbf
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 6.7
- Impact score
- 5.9
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hexagon:qognify_vms_client_viewer:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "00DC0AB1-9B1F-46CE-933A-1F309EE6F070",
"versionStartIncluding": "7.1"
}
],
"operator": "OR"
}
]
}
]