High severity7.8NVD Advisory· Published Nov 21, 2023· Updated Jun 17, 2026
CVE-2023-6235
CVE-2023-6235
Description
An uncontrolled search path element vulnerability has been found in the Duet Display product, affecting version 2.5.9.1. An attacker could place an arbitrary libusk.dll file in the C:\Users\user\AppData\Local\Microsoft\WindowsApps\ directory, which could lead to the execution and persistence of arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =2.5.9.1
- Duet Display/Duet Display for Windows 10+v5Range: 2.5.9.1
Patches
Vulnerability mechanics
References
1- www.incibe.es/en/incibe-cert/notices/aviso/arbitrary-code-execution-duet-displaynvdThird Party Advisory
News mentions
0No linked articles in our index yet.