PT-2022-17959 · Akeo Consulting · Rufus Executable+1
Published
2022-03-27
·
Updated
2022-03-27
·
CVE-2022-26620
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Akeo Consulting Rufus Executable version 3.17.1846
Akeo Consulting Rufus Portable Executable version 3.17p
Description
The issue allows attackers to execute arbitrary code or escalate privileges by placing a crafted x86 DLL in the same directory as other executables.
Recommendations
For Akeo Consulting Rufus Executable version 3.17.1846, consider removing or restricting access to crafted x86 DLLs in the same directory as other executables until a patch is available.
For Akeo Consulting Rufus Portable Executable version 3.17p, consider removing or restricting access to crafted x86 DLLs in the same directory as other executables until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Rufus Executable
Rufus Portable Executable