Description
NetEase Youdao Dictionary has a DLL hijacking vulnerability, which can be exploited by attackers to gain server permissions. This affects Guangzhou NetEase Youdao Dictionary 8.9.2.0.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://www.cnvd.org.cn/flaw/show/2104833
Scores
CVSS v3
7.8
EPSS
0.0040
EPSS Percentile
32.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-427
Status
published
Products (1)
163/netease_youdao_dictionary
8.9.2.0
Published
Sep 03, 2020
Tracked Since
Feb 18, 2026