Binary Hijack Vulnerability in Embarcadero Dev-CPP
CVE-2022-33036

7.8HIGH

Key Information:

Vendor: Embarcadero
Status: Dev-c\+\+
Vendor: CVE Published:; 29 June 2022

🔔 Create Embarcadero Vulnerability Alert

What is CVE-2022-33036?

A vulnerability in Embarcadero Dev-CPP v6.3 allows malicious actors to exploit a binary hijack, facilitating the execution of arbitrary code by delivering a specially crafted .exe file. This flaw can compromise the integrity and confidentiality of the system where vulnerable software is installed, posing significant security risks to users. It is crucial for users to apply necessary updates and patches to mitigate exposure to potential attacks.

References

https://github.com/ycdxsb/Vuln/blob/main/Embarcadero-Dev-...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2022
Vulnerability Reserved
Jun 13, 2022

JSON