CVE-2024-9493
HIGHToolStick - Privilege Escalation/Arbitrary Code Execution
Title source: llmDescription
DLL hijacking vulnerabilities, caused by an uncontrolled search path in the ToolStick installer can lead to privilege escalation and arbitrary code execution when running the impacted installer.
Scores
CVSS v3
8.6
EPSS
0.0008
EPSS Percentile
22.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Classification
CWE
CWE-427
Status
draft
Timeline
Published
Jan 24, 2025
Tracked Since
Feb 18, 2026