PT-2023-13226 · Infoblox · Infoblox Bloxone Endpoint

Published

2023-02-17

Updated

2025-03-18

CVE-2022-32972

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Infoblox BloxOne Endpoint for Windows versions through 2.2.7

Description The issue allows DLL injection, which can result in local privilege escalation.

Recommendations For versions through 2.2.7, update to a version later than 2.2.7 to resolve the issue. As a temporary workaround, consider restricting access to vulnerable system components to minimize the risk of exploitation.

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2022-32972

Affected Products

Infoblox Bloxone Endpoint

PT-2023-13226 · Infoblox · Infoblox Bloxone Endpoint

CVE-2022-32972

Weakness Enumeration

Related Identifiers

Affected Products

References · 7