Main Vulnerability Database Exploits ID:10236 - Exploit for Insecure DLL loading in Secure Integration Server - CVE-2022-2334

ID:10236 - Exploit for Insecure DLL loading in Secure Integration Server - CVE-2022-2334

Published: July 19, 2024

Vulnerability identifier: #VU66738

Vulnerability risk: Low

CVE-ID: CVE-2022-2334

CWE-ID: CWE-427

Exploitation vector: Remote access

Vulnerable software:
Secure Integration Server

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/windows/http/softing_sis_rce

Vulnerability description

The vulnerability allows a remote user to compromise vulnerable system.

The vulnerability exists due to the application searches for a library dll that is not found. A remote administrator can place a specially crafted .dll file and execute arbitrary code on target system.

Remediation

Install updates from vendor's website.

ID:10236 - Exploit for Insecure DLL loading in Secure Integration Server - CVE-2022-2334

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human