Chatwork · Chatwork Desktop App · CVE-2018-0648
**Name of the Vulnerable Software and Affected Versions**
ChatWork Desktop App for Windows versions 2.3.0 and earlier
**Description**
The issue concerns an untrusted search path vulnerability in the installer. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
**Recommendations**
For versions 2.3.0 and earlier, update to a version later than 2.3.0 to resolve the issue.