CVE-2022-23104
MEDIUMWIN-911 2021 R1 and R2 - Unauthenticated Privilege Escalation via DLL Hijacking
Title source: llmDescription
WIN-911 2021 R1 and R2 are vulnerable to a permissions misconfiguration that may allow an attacker to locally write files to the program Operator Workspace directory, which holds DLL files and executables. A low-privilege attacker could write a malicious DLL file to the Operator Workspace directory to achieve privilege escalation and the permissions of the user running the program.
References (2)
Core 2
Core References
Mitigation, Third Party Advisory, US Government Resource x_refsource_confirm
https://www.cisa.gov/uscert/ics/advisories/icsa-22-053-03
Vendor Advisory x_refsource_confirm
https://supportdesk.win911.com/support/solutions/articles/24000074683-win-911-2021-r1-r2-file-permission-vulnerability
Scores
CVSS v3
5.6
EPSS
0.0020
EPSS Percentile
10.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-276
Status
published
Products (2)
win-911/win-911_2021_r1
5.21.10
win-911/win-911_2021_r2
5.21.17
Published
Feb 24, 2022
Tracked Since
Feb 18, 2026