CVE-2022-33921

Name of the Vulnerable Software and Affected Versions Dell GeoDrive versions prior to 2.2

Description The issue is related to an uncontrolled DLL search path in the local file system of Dell GeoDrive. Exploitation of this issue could allow an attacker to execute arbitrary code. A low-privilege attacker could potentially exploit this, leading to the execution of arbitrary code in the SYSTEM security context.

Recommendations For versions prior to 2.2, update to version 2.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable DLL files to minimize the risk of exploitation.