CVE-2017-2249
CVE-2017-2249
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
14 Jul 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Untrusted search path vulnerability in Self-extracting archive files created by Lhaz+ version 3.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Affected products
Chitora soft · Self-extracting archive files created by Lhaz+