CVE-2024-11859

DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link…

ESET·CWE-427·Published 2025-04-07

CVSS

—

EPSS

0.02

KEV

Exploits

cve.orgen

165 chars

DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link library and execute its code.

NVDen

165 chars

DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link library and execute its code.

NVDes

202 chars

La vulnerabilidad de secuestro del orden de búsqueda de DLL potencialmente permitía a un atacante con privilegios de administrador cargar una librería de vínculo dinámico maliciosa y ejecutar su código.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
4.0	Primary	cve.org	8.4	—	—	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
4.0	Secondary	NVD	8.4	—	—