CVE-2022-23748
Dante Discovery Process Control Vulnerability
CVSS
—
Sin CVSS
EPSS
9.1%
p95
KEV
SÍ
6 feb 2025
Exploit Today
78
0-100
Publicado: — · Última mod.: —
Producto
Audinate / Dante Discovery
Vulnerabilidad
Dante Discovery Process Control Vulnerability
Añadido a KEV
6 feb 2025
Remediar antes de
27 feb 2025
Uso conocido en ransomware
No
Descripción resumida
Dante Discovery contains a process control vulnerability in mDNSResponder.exe that all allows for a DLL sideloading attack. A local attacker can leverage this vulnerability in the Dante Application Library to execute arbitrary code.
Acción requerida
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notas
https://www.getdante.com/support/faq/audinate-response-to-dante-discovery-mdnsresponder-exe-security-issue-cve-2022-23748/ ; https://nvd.nist.gov/vuln/detail/CVE-2022-23748
Sin CVEs relacionados por CWE o producto.