CVE-2024-11859

EXPLOITED

DLL Search Order - Code Injection

Title source: llm

Description

DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link library and execute its code.

References (1)

[Various Sources] https://support.eset.com/en/ca8810-dll-search-order-hijacking-vulnerability-in-eset-products-for-windows-fixed

Scores

EPSS 0.0035

EPSS Percentile 57.4%

Exploitation Intel

VulnCheck KEV 2025-04-07

Classification

CWE

CWE-427

Status draft

Timeline

Published Apr 07, 2025

Tracked Since Feb 18, 2026