Medium severity6.5NVD Advisory· Published Mar 31, 2022· Updated Jun 17, 2026
CVE-2022-27966
CVE-2022-27966
Description
Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file.
Affected products
2- Xshell/Xshelldescription
Patches
Vulnerability mechanics
References
2- github.com/ycdxsb/Vuln/blob/main/NetSarang-CreateProcessW-Misuse-Binary-Hijack/Xshell-CreateProcessW-Misuse-Binary-HijacknvdExploitThird Party Advisory
- www.netsarang.com/en/xshell-update-history/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.