Vulnerability Details CVE-2023-47113
BleachBit cleans files to free disk space and to maintain privacy. BleachBit for Windows up to version 4.4.2 is vulnerable to a DLL Hijacking vulnerability. By placing a DLL in the Folder c:\DLLs, an attacker can run arbitrary code on every execution of BleachBit for Windows. This issue has been patched in version 4.5.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.6%
CVSS Severity
CVSS v3 Score 7.3
References
Products affected by CVE-2023-47113
-
cpe:2.3:a:bleachbit:bleachbit:1.0
-
cpe:2.3:a:bleachbit:bleachbit:1.1
-
cpe:2.3:a:bleachbit:bleachbit:1.10
-
cpe:2.3:a:bleachbit:bleachbit:1.12
-
cpe:2.3:a:bleachbit:bleachbit:1.17
-
cpe:2.3:a:bleachbit:bleachbit:1.19
-
cpe:2.3:a:bleachbit:bleachbit:1.2
-
cpe:2.3:a:bleachbit:bleachbit:1.3
-
cpe:2.3:a:bleachbit:bleachbit:1.4
-
cpe:2.3:a:bleachbit:bleachbit:1.6
-
cpe:2.3:a:bleachbit:bleachbit:1.7.7
-
cpe:2.3:a:bleachbit:bleachbit:1.8
-
cpe:2.3:a:bleachbit:bleachbit:1.9.2
-
cpe:2.3:a:bleachbit:bleachbit:1.9.3
-
cpe:2.3:a:bleachbit:bleachbit:1.9.4
-
cpe:2.3:a:bleachbit:bleachbit:2.0
-
cpe:2.3:a:bleachbit:bleachbit:2.1
-
cpe:2.3:a:bleachbit:bleachbit:2.2
-
cpe:2.3:a:bleachbit:bleachbit:2.3
-
cpe:2.3:a:bleachbit:bleachbit:3.0
-
cpe:2.3:a:bleachbit:bleachbit:3.1.0
-
cpe:2.3:a:bleachbit:bleachbit:3.2.0
-
cpe:2.3:a:bleachbit:bleachbit:3.9.0
-
cpe:2.3:a:bleachbit:bleachbit:3.9.2
-
cpe:2.3:a:bleachbit:bleachbit:4.0.0
-
cpe:2.3:a:bleachbit:bleachbit:4.1.0
-
cpe:2.3:a:bleachbit:bleachbit:4.2.0
-
cpe:2.3:a:bleachbit:bleachbit:4.3.0
-
cpe:2.3:a:bleachbit:bleachbit:4.4.0
-
cpe:2.3:a:bleachbit:bleachbit:4.4.1
-
cpe:2.3:a:bleachbit:bleachbit:4.4.2
-
cpe:2.3:o:microsoft:windows:-