CVE-2017-2246
CVE-2017-2246
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
14 Jul 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Untrusted search path vulnerability in Installer of Lhaz version 2.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Affected products
Chitora soft · Installer of Lhaz