Vulnerability Details CVE-2022-22996
The G-RAID 4/8 Software Utility setups for Windows were affected by a DLL hijacking vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the system user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.2%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.9
References
- https://www.westerndigital.com/support/product-security/wdc-22007-sandisk-professional-g-raid-4-8-software-utility-setup-for-windows-privilege-escalation
- https://www.westerndigital.com/support/product-security/wdc-22007-sandisk-professional-g-raid-4-8-software-utility-setup-for-windows-privilege-escalation
Products affected by CVE-2022-22996
-
cpe:2.3:a:westerndigital:sandisk_professional_g-raid_4/8_software_utility:-
-
cpe:2.3:a:westerndigital:sandisk_professional_g-raid_4/8_software_utility_driver:-