Ashlar-Vellum Argon Uncontrolled Search Path Element Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Argon. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of various file types. The process loads a library from an unsecured location. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21678.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: zdi
Published: 2024-05-03T02:14:02.806Z
Updated: 2024-06-04T17:19:22.881Z
Reserved: 2023-09-28T18:02:49.773Z
Link: CVE-2023-44438
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-05-03T03:15:59.237
Modified: 2024-05-03T12:48:41.067
Link: CVE-2023-44438
JSON object: View
Redhat Information
No data.
CWE