VYPR
Unrated severityNVD Advisory· Published Jul 19, 2019· Updated Aug 5, 2024

CVE-2019-1010100

CVE-2019-1010100

Description

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables (ALL executables on the web site). The attack vector is: CAPEC-471, CWE-426, CWE-427.

Affected products

2
  • Akeo/Rufusllm-fuzzy
    Range: <=3.0
  • Akeo Consulting/Rufusv5
    Range: ≤ 3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.